cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Connect-AzureAD from within Windows Build Agent

nazakathussain
Copper Contributor

‎Feb 08 2022 11:19 AM - last edited on ‎Mar 05 2024 01:29 PM by

‎Feb 08 2022 11:19 AM - last edited on ‎Mar 05 2024 01:29 PM by

Connect-AzureAD from within Windows Build Agent

Hi,

 

I am trying to connect within a Azure DevOps pipeline using Image Windows-Latest to Azure AD. Overall I am automating a Privilege Identity Management by using the AzureADPreview Module. The Modules installs as expected however the problem is after any command I get the following error in the pipeline.

 

Error reading JToken from JsonReader. Path '', line 0, position 0.
 
I am using the following commands to connect inside the pipeline to connect: 
 
 

 

$context = Get-AzContext
$aadToken = Get-AzAccessToken -ResourceTypeName AadGraph
 Connect-AzureAD -AadAccessToken $aadToken.Token -AccountId $context.Account.Id -TenantId $context.tenant.id

 

 

Any command say Get-AzureADUser all fail with the same error. I have printed out all the param values and they have values. 

Labels:
2,391 Views
0 Likes
1 Reply
Reply
1 Reply
nazakathussain

‎Feb 10 2022 01:51 AM

‎Feb 10 2022 01:51 AM

Re: Connect-AzureAD from within Windows Build Agent

I have been doing some more digging. There is one more point that I have to make, that MFA is enabled on the tenant. Decoding the token that is provided by the commands in jwt.io the MFA enabled flag will not be set.
I have read on other forums that Connect-AzureAD using the AADToken when MFA has been set does not work. Sounds like this could be a non-starters
0 Likes
Reply