Recently I wrote about reporting on individual Azure AD Users Authentication Methods using Microsoft Graph and PowerShell. Whilst this is great at a user level, Azure AD Authentication Methods Summary Reports at an organization level are often requested by IT Management.… keep reading
Finding Stale Azure AD B2B Guest Accounts based on lastSignInDateTime
Collaboration between Azure Active Directory tenants typically involves Azure AD Guest accounts. After a few years, the proliferation of ‘Guest’ accounts usually becomes a focus, especially for larger tenants. As Azure AD has matured the meta data associated with accounts, along with Microsoft Graph improvements is making it easier to define and locate stale Azure AD B2B Guest Accounts.… keep reading
Reporting on Users’ Azure AD Authentication Methods using Microsoft Graph and PowerShell
Reporting on users’ registered Azure AD Authentication methods is a more common request from enterprise security teams recently with the advance of Passwordless Authentication. In mid 2020 Microsoft added the ability to report on Azure AD Authentication Methods using Microsoft Graph, however ONLY with Delegated Microsoft Graph permissions.… keep reading
Getting Microsoft 365 Individual User Usage Reports with PowerShell
The ability to obtain Individual User Usage Reports has been possible in Office365 for many years. However, they were only available from each individual service such as Teams, OneDrive, Exchange, SharePoint and Yammer. If you wanted a holistic view you needed to query each of the services API’s and collate the responses for each identity.… keep reading
Microsoft Graph using MSAL with Python
For MSAL with Python and Delegated Permissions see this post. For MSAL with Python and Certificate Authentication see this post.
The Microsoft Authentication Libraries (MSAL) started to become generally available in May 2019 and I’ve previously written numerous posts on leveraging the .NET… keep reading
Microsoft Graph using MSAL with PowerShell and Certificate Authentication
Close to 3 years ago I authored this post on using PowerShell for Certificate based Azure AD Authentication using ADAL (Active Directory Authentication Library). More recently I’ve published posts on using MSAL (MicroSoft Authentication Library) with PowerShell for Application and Delegated integration with the Microsoft Graph.… keep reading
Microsoft Graph using MSAL with PowerShell and Delegated Permissions
In October last year I authored this post that provided a getting started guide to using MSAL with PowerShell. That post also hinted at future posts expanding on additional functionality. Finally, I’m delivering on that with this post that will dive into using MSAL with PowerShell and delegated permissions.… keep reading
ChatOps for Azure Active Directory
Last year I wrote Lithnet Microsoft Identity Manager plug-ins for PoshBot. After publishing those I developed the majority of a PoshBot plugin to enable ChatOps for Azure Active Directory. Finally with a little more bandwidth at the start of 2020 I’ve been able to put the finishing touches on the module and release it.… keep reading
Microsoft Graph using MSAL with PowerShell
Update 9 July 2020: This post details using MSAL with PowerShell for Azure AD Registered Applications with Application Permissions. See this post for using MSAL with PowerShell for Azure AD Registered Applications with Delegated Permissions. See this post for using MSAL with PowerShell for Azure AD Registered Applications using Application Permissions with Certificate based authentication.… keep reading
JWTDetails PowerShell Module for Decoding JWT Access Tokens with readable Token Expiry Time
Updated: 4 July 2024 – JWTDetails updated to v1.0.3
- Updated code signing certificate
- Updated timestamp server
Updated: 15 June 2020 – JWTDetails updated to v1.0.2
- Fixes issue related to time zones with 30min offsets
- Code Signed
I’ve just published my first PowerShell Module to the PowerShell Gallery.… keep reading