oauth2.0 Archives - darrenjrobinson - Bespoke Identity and Access Management Solutions

December 22, 2021March 8, 2022

Connecting to Microsoft Graph using the Authorization Code with PKCE Flow and PowerShell

I’ve authored numerous posts on using the Microsoft Authentication Libraries to connect to Microsoft Graph using PowerShell and Python. They cover using both public and confidential client methods. But what about a method that can be either? In this post I show how to use the Authorization Code with PKCE Flow and PowerShell to authenticate and authorize against Azure Active Directory for Microsoft Graph access.… keep reading

December 21, 2021December 22, 2021

Generating PKCE codes with PowerShell

Proof Key for Code Exchange (PKCE) is a mechanism often used with an OAuth2 Authorization Code Grant flow to provide an enhanced level of security when authenticating to an Identity Provider such as Microsoft Graph to get an access token. In order to use PKCE a code_verifier is generated along with a code_challenge.… keep reading

September 30, 2021September 30, 2021

Interactive Authentication to Microsoft Graph using MSAL with PowerShell and Delegated Permissions

Previously I’ve written about using MSAL and PowerShell with Application Permissions and Client Credentials and Certificate based authentication. Also with Delegated Permissions and Device Code flow authentication. The one I haven’t written a post on is performing interactive authentication to Microsoft Graph using MSAL with PowerShell and Delegated Permissions.… keep reading

May 19, 2021May 19, 2021

Azure AD and Microsoft Office365 Deep Links and Sign In URLs

Accessing Microsoft Office365, the Azure Portal, and the plethora of services we integrate with Azure Active Directory is for the most part seamless, especially when you only need to access a single tenant. However, it is 2021, and collaboration across tenants is the new normal.… keep reading

July 14, 2020November 10, 2020

Microsoft Graph using MSAL with PowerShell and Certificate Authentication

Close to 3 years ago I authored this post on using PowerShell for Certificate based Azure AD Authentication using ADAL (Active Directory Authentication Library). More recently I’ve published posts on using MSAL (MicroSoft Authentication Library) with PowerShell for Application and Delegated integration with the Microsoft Graph.… keep reading

July 9, 2020July 15, 2020

Microsoft Graph using MSAL with PowerShell and Delegated Permissions

In October last year I authored this post that provided a getting started guide to using MSAL with PowerShell. That post also hinted at future posts expanding on additional functionality. Finally, I’m delivering on that with this post that will dive into using MSAL with PowerShell and delegated permissions.… keep reading

October 30, 2019March 28, 2021

Microsoft Graph using MSAL with PowerShell

Access Token via decode in PowerShell with JWTDetails

Update 9 July 2020: This post details using MSAL with
PowerShell for Azure AD Registered Applications with
Application Permissions. 
See this post for using MSAL with PowerShell for
Azure AD Registered Applications with Delegated
Permissions.

See this post for using MSAL with PowerShell for
Azure AD Registered Applications using Application
Permissions with Certificate based authentication.

… keep reading

March 26, 2018December 31, 2018

Is it you, or is it me? When Cloud Services aren’t always on. “Failed to load external resource” while authenticating to Azure

The weekend just gone (24-25 March 2018) I was nearing the end of a personal project I’d been building around Internet of Things devices integrating with Azure. There were a few ends that needed a little tidying up and I’d planned to knock those off on Saturday morning.… keep reading

May 24, 2017November 10, 2020

How to access Microsoft Identity Manager Hybrid Report data using PowerShell, Graph API and oAuth2

Update: Dec 20 2018. 
See this post that details the changes to the Azure AD 
Reports and Events Rest API.

Hybrid Reporting is a great little feature of Microsoft Identity Manager. A small agent installed on the MIM Sync Server will send reporting data to Azure for MIM SSPR and MIM Group activities.… keep reading

May 22, 2017October 30, 2019

A quick start guide to leveraging the Azure Graph API with PowerShell and oAuth 2.0

Update Oct 2019: See this post for simplifying oAuth Authentication to Microsoft Graph using PowerShell and the MSAL (Microsoft Authentication Libraries)

Introduction

In September 2016 I wrote this post detailing integrating with the Azure Graph API via PowerShell and oAuth 2.0.… keep reading