CODEWITHSUNDEEP
azureazure-active-directory
Nishant
Nishant

Reputation: 437

Fetching the TenanId for a subscription from Azure Active Directory

I have a requirement, where I needed to fetch the tenantDirectoryId for a given subscription. I could find a rest get api https://management.azure.com/subscriptions/[subscription]/versions...

The error response to this gave the tenant directory.

Is there any better way to fetch directory for a subscriptionId.

Upvotes: 1

Views: 2421

Answers (2)

Pete Philters
Pete Philters

Reputation: 889

We have recently had the same problem we wanted to fix. After speaking to Microsoft there is no supported way to do this through the Graph API when accessing as an application using the client_credentialflow.

An approach we have taken to get the tenant id is to call the OAuth2 metadata document endpoint for your tenant

https://login.microsoftonline.com/{tenant}/v2.0/.well-known/openid-configuration

By calling this you’ll see your token endpoint as well as other useful information listed which you can utilise to log in. Or you can grab the tenant id using string stripping.

Upvotes: 0

Marilee Turscak - MSFT
Marilee Turscak - MSFT

Reputation: 7728

As of now (06/07/2018), an easy approach would be running az account show in the Azure Cloud Shell (requires a Storage Account) in the Azure Portal.

--- Command ---

az account show

--- Command Output ---

{
  "environmentName": "AzureCloud",
  "id": "{Subscription Id (GUID)}",
  "isDefault": true,
  "name": "{Subscription Name}",
  "state": "Enabled",
  "tenantId": "{Tenant Id (GUID)}",
  "user": {
    "cloudShellID": true,
    "name": "{User email}",
    "type": "user"
  }
}

See this doc for more details on Azure Cloud Shell: https://learn.microsoft.com/en-us/azure/cloud-shell/overview

Upvotes: 2

Related Questions