I've run the FindImpersonation script, and received the output with 9 entries in it, however, none of the IDs in column B seem to match up with with any of our applications. I tried to find one by connecting to graph with "Application.Read.All" permission, then running:
Get-MgServicePrincipal -filter "appId eq 'ID-From-CSV'"
Trying each of the ID's from column B returned nothing. Am I missing something or using this information incorrectly?
MicrosoftTake the application ID and search against your enterprise applications within the Entra ID admin portal.
I've tried that as well, I cleared all filters and tried using the ID in the search field, and also setting only 1 filter with "Application ID starts with {App-ID}", but I'm still not seeing any hits for any of the App ID's found from the script. I verified I am in the correct tenant, given the Organization ID. Not sure what I'm missing.
MicrosoftAnother option is to use Graph:
Import-Module Microsoft.Graph.Applications
Get-MgApplication -ApplicationId 'xxxxxxxxxxxxx'
