Comments (7)
merill
commented on August 16, 2024
3
Cheers folks. I have updated the instructions to include a step to create the app
from azureadassessment.
StephanGa
commented on August 16, 2024
Same issue. Tried to delete it - then came across this entry in graph explorer.
We are doing our manual access reviews with that.
from azureadassessment.
pstapf
commented on August 16, 2024
You can just create your own App Registration and point the Connect-AADAssessment to your AppID.
Delegated permissions will be added to your app reg then.
from azureadassessment.
StephanGa
commented on August 16, 2024
Thanks. Can you help me out with the "Redirect URL" or maybe some other settings that need to be done?
I added https://login.microsoftonline.com as Redirect URL and use the "-clientid" parameter but it fails with:
Get-MsalToken : A configuration issue is preventing authentication - check the error message from the server for
details. You can modify the configuration in the application registration portal. See
https://aka.ms/msal-net-invalid-client for details. Original exception: AADSTS7000218: The request body must contain
the following parameter: 'client_assertion' or 'client_secret'.
It should take the rights of my current user as delegated rights
from azureadassessment.
pstapf
commented on August 16, 2024
Ahh sorry, yes, forget to add that detail.
I added the following native/desktop client redirect Uri: https://login.microsoftonline.com/common/oauth2/nativeclient
After you consent to the permissions make sure they are added correctly to the app and admin grant ist set
/Peter
from azureadassessment.
StephanGa
commented on August 16, 2024
I though i give it some time... but:
Anything else i need to configure?
PS C:\Users\admin> Connect-AADAssessment -clientid "4ba2af9f-xxx-a46c-b4d3584fcfb1" Get-MsalToken : A configuration issue is preventing authentication - check the error message from the server for
details. You can modify the configuration in the application registration portal. See
https://aka.ms/msal-net-invalid-client for details. Original exception: AADSTS7000218: The request body must contain
the following parameter: 'client_assertion' or 'client_secret'. Trace ID: 0112fa30-31be-41be-bdf8-3455b4d04000
Correlation ID: ece7897b-0f3a-4137-8c0f-d2384390c4a7 Timestamp: 2024-04-16 06:31:40Z
Deleted App again and tried with redirect URL from the start - same error
from azureadassessment.
TomAafloen
commented on August 16, 2024
Hello!
The Connect-AADAssessment cmdlet works great with my own Client. But the Complete-AADAssessmentReports cmdlet still gives the error:
AADSTS7000112: Application '68bc31c0-f891-4f4c-9309-c6104f7be41b'(Azure AD Assessment) is disabled.
Can I point that cmdlet to my registered app somehow? I do not see a ClientId parameter there.
from azureadassessment.
Related Issues (20)
- The property 'Count' cannot be found on this object. Verify that the property exists. HOT 6
- CA recommendation Office 365 Coverage check HOT 1
- Error: Expand-GroupTransitiveMembership : The property 'members' cannot be found on this object. Verify that the property Exists. HOT 1
- Add-AzureAssessmentTask doesn't support MFA parameter HOT 1
- Explanation of a tab in the PowerBi report HOT 2
- Using service pricipal not working HOT 8
- Request was throttled - Failing HOT 4
- AppKeys and expiration HOT 1
- Unable to find type [System.IO.compression.zipfile] HOT 1
- Conditional Access polices with Preview features not collect as part of the assessment HOT 1
- Get-MsGraphResults Issue - $expand of back links is not supported for mega tenants - B2C tenant HOT 1
- Connection Error, The property 'TokenType' cannot be found HOT 1
- issue when collecting data HOT 1
- ForEach-Object: Cannot convert argument "item", with value: "MicrosoftAdminPortals" HOT 3
- What is GTP HOT 1
- The export package has not been generated HOT 1
- Error when accessing Conditional Access Policies HOT 1
- AzureAD Assessment not able to pull all the data from Entra ID
- Unable to run report due to Microsoft Admin Portals Application
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from azureadassessment.