Reputation: 107
How do I retrieve what application/servicePrincipal a user is allowed access to from AzureAD Graph API?
I have credentials for a tenant that is not home. To get access to applications, I need to be in the home tenant, which is why I am getting only a part of the actual applications list all over. But I managed to pull all of them by understanding the concept of service principals.
The next problem is.. How can I access which users are allowed access to these applications/servicePrincipals?
Any help would be greatly appreciated. Thank you!
Upvotes: 1
Views: 75
Answers (1)
Reputation: 15629
According to the official document
We strongly recommend that you use Microsoft Graph instead of Azure AD Graph API to access Azure Active Directory (Azure AD) resources.
We can list the owners for an application, but there is no api to retrieve the applications a user is allowed to access. Also, the application admin/global admin have access to all the applications.
Upvotes: 1
Related Questions
- Query for specific Azure AD permission
- get appRoleAssignment permission description from REST API
- Get App Roles for user limited to the requesting app
- Retrieve Roles and Users per Application in Microsoft Graph
- Is there way to retrieve appRoleName using Graph API call?
- Using Microsoft Graph API to find all Applications with Admin Consent Granted
- Getting azure ad users list for specific application with graph api
- How to get scope list from service for specifying with client authentication request
- How to list all appRoleAssignments in Microsoft Graph API or Azure AD Graph API
- Get list of apps or permissions for a user in Office 365