cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Script Authentication

shockotechcom
Brass Contributor

‎Jun 04 2020 02:44 AM - last edited on ‎Jul 24 2020 01:05 AM by

‎Jun 04 2020 02:44 AM - last edited on ‎Jul 24 2020 01:05 AM by

Script Authentication

I have numerous scripts/bits of code I'd like to run against AzureAD. How can I authenticate from a script? Obviously if using the powershell cmdlets I can supply a username password but then that user needs to be excluded from MFA, risky sign ins etc. Is this the general recommended approach or can I use certs or the like or an app registration? What pattern should I be using??

Labels:
2,105 Views
0 Likes
1 Reply
Reply
1 Reply
Thijs Lecomte

‎Jun 04 2020 04:31 AM

‎Jun 04 2020 04:31 AM

Re: Script Authentication

Hi

You should indeed look into utilizing app registrations.
For app registrations you have two ways:
- Application access
-Delegated access

Delegated access is when a user sign into the application, application access is where the script runs in the background (daemon task)

Application authentication can be done through a certificate or a client secret as you mentioned.

I recommend looking into this blog series, it's a really detailed one
https://developer.microsoft.com/en-us/graph/blogs/30daysmsgraph-day-9-azure-ad-applications-on-v2-en...
1 Like
Reply