Reputation: 10792
How to get a v2 jwt token when authorizing against AzureAD in Postman
I'm able to get a v1.0 jwt token with the below settings.
How do I make the https://login.microsoftonline.com/{tenant_id}/oauth2/v2.0/authorize endpoint return v2.0?
Upvotes: 0
Views: 7066
Answers (2)
Reputation: 111
For me setting "accessTokenAcceptedVersion": 2 in the manifest solved the issue. No further changes to the app registration was required.
Upvotes: 1
Reputation: 15734
First we need to create app in ad with "Supported account types" as Accounts in any organizational directory (Any Azure AD directory - Multitenant) and personal Microsoft accounts (e.g. Skype, Xbox).(when we choose this option, the property accessTokenAcceptedVersion in its Manifest will be 2).
Then we need to add a scope in it, and when we request the access token, we need to use openid api://xxxxxx/User.read instead of only openid in postman as the screenshot you provided.
After that, we can request the access token(v2)
Parse the access token, it will show v2.
Update about how to add scope:
We can add the scope in app on portal(shown as screenshot below):
Then we can copy the scope directly from here as below:
Upvotes: 4
Related Questions
- Azure access token generation from Postman
- How to generate Azure AD ID token using username and password from postman
- Generate bearer token using postman
- Request Access Token in Postman for Azure AD B2C
- Postman - how to obtain Azure Active Directory token using sign in form?
- Access Token JWT validation
- JWT token. Error "AADSTS700027: Client assertion contains an invalid signature"
- Test Azure APIM Oauth 2.0 with Postman to generate jwt
- Unable to get Azure AD token in PostMan
- Get token for Microsoft API with JWT