cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
SOLVED

Using SharePoint Client Side Object Model with PowerShell and Multifactor Authentication

Chris Stewart
Brass Contributor

‎Aug 02 2017 12:52 PM

‎Aug 02 2017 12:52 PM

Using SharePoint Client Side Object Model with PowerShell and Multifactor Authentication

There is a technique to connect to SharePoint Online with PowerShell when Multi-factor Authentication(MFA) is enabled.

https://technet.microsoft.com/en-us/library/fp161372.aspx

 

There is a very limited list of SharePoint Online cmdlets
https://technet.microsoft.com/en-us/library/fp161364.aspx

 

I would like to leverage the client side object model to access objects like the webs(spweb) and lists(splist).

https://dev.office.com/sharepoint/docs/sp-add-ins/complete-basic-operations-using-sharepoint-client-...

 

Is there a technique( or example) to use my identity/credentials after I have authenticated with Multifactor Authentication with Microsoft.SharePoint.Client.ClientContext?


24.1K Views
0 Likes
7 Replies
Reply
7 Replies
best response confirmed by Chris Stewart (Brass Contributor)
Paul Pascha

‎Aug 02 2017 11:41 PM - edited ‎Aug 02 2017 11:44 PM

‎Aug 02 2017 11:41 PM - edited ‎Aug 02 2017 11:44 PM

Solution

Re: Using SharePoint Client Side Object Model with PowerShell and Multifactor Authentication

Connecting to SharePoint Online using PnP PowerShell Connect-PnPOnline allows you to specify a UseWebLogin parameter. This allows you to connect with MFA enabled. Once connected you'd have many more cmdlets at your disposal

 

https://github.com/SharePoint/PnP-PowerShell

 

Hope this helps!

2 Likes
Reply
Henry Ong

‎Nov 16 2017 03:11 PM

‎Nov 16 2017 03:11 PM

Re: Using SharePoint Client Side Object Model with PowerShell and Multifactor Authentication

Would there happen to be a way to do this without the web login? Use case: automated PowerShell scripts running on a schedule where the service account also has MFA enabled. 

1 Like
Reply
Christophe Heureux

‎Jan 30 2018 07:44 AM - edited ‎Jan 30 2018 11:57 PM

‎Jan 30 2018 07:44 AM - edited ‎Jan 30 2018 11:57 PM

Re: Using SharePoint Client Side Object Model with PowerShell and Multifactor Authentication

i was able to run my azure automation script that accesses an SPO tenant with CSOM + an account that has MFA authentication enabled by using the app password

https://support.office.com/en-us/article/create-an-app-password-for-office-365-3e7c860f-bda4-4441-a6...

i deleted the default app pass that was created, as it didn't seem to work in powershell, i found another post on tech community that describes the same problem

https://techcommunity.microsoft.com/t5/Identity-Authentication/Authenticating-to-O365-using-Powershe...

2 Likes
Reply
Trevor Seward

‎Jan 30 2018 03:03 PM

‎Jan 30 2018 03:03 PM

Re: Using SharePoint Client Side Object Model with PowerShell and Multifactor Authentication

I also use an App Password and it works well.
1 Like
Reply
Henry Ong

‎Feb 13 2018 10:27 AM

‎Feb 13 2018 10:27 AM

Re: Using SharePoint Client Side Object Model with PowerShell and Multifactor Authentication

Seems to work with the app password now. Thanks for the nudge!

0 Likes
Reply
clayosborn

‎Mar 17 2020 04:41 AM

‎Mar 17 2020 04:41 AM

Re: Using SharePoint Client Side Object Model with PowerShell and Multifactor Authentication

@Trevor Seward

 

Worked great right up till the ability to create App Passwords disappeared from every O365 tenant I manage.  Every client, even my companies own tenant, the option to create these is gone, and no one can seem to figure out how to re-enable it.

0 Likes
Reply
JDelforno

‎May 13 2020 12:06 AM

‎May 13 2020 12:06 AM

Re: Using SharePoint Client Side Object Model with PowerShell and Multifactor Authentication

@clayosborn 

Given you're using App Passwords, I hope it's safe to assume you're using entirely sharepoint online.

If that assumption is correct, you can make use of;

https://docs.microsoft.com/en-us/powershell/module/sharepoint-pnp/connect-pnponline?view=sharepoint-...

 

------------------EXAMPLE 9------------------

Connect-PnPOnline -Url https://contoso.sharepoint.de -AppId 344b8aab-389c-4e4a-8fa1-4c1ae2c0a60d -AppSecret a3f3faf33f3awf3a3sfs3f3ss3f4f4a3fawfas3ffsrrffssfd -AzureEnvironment Germany

 

Setting up Enterprise Applications within Azure AD is rather straight forward.

0 Likes
Reply
1 best response

Accepted Solutions
best response confirmed by Chris Stewart (Brass Contributor)
Paul Pascha

‎Aug 02 2017 11:41 PM - edited ‎Aug 02 2017 11:44 PM

‎Aug 02 2017 11:41 PM - edited ‎Aug 02 2017 11:44 PM

Solution

Re: Using SharePoint Client Side Object Model with PowerShell and Multifactor Authentication

Connecting to SharePoint Online using PnP PowerShell Connect-PnPOnline allows you to specify a UseWebLogin parameter. This allows you to connect with MFA enabled. Once connected you'd have many more cmdlets at your disposal

 

https://github.com/SharePoint/PnP-PowerShell

 

Hope this helps!

View solution in original post

2 Likes
Reply