Using powershell to connect to azure ad using access token

Question

I was trying to connect to Azure AD using access token via PowerShell. But whenever I tried to run other commands it gives an error:

Get-AzureADUser : Error occurred while executing GetUsers

Code: Authentication_ExpiredToken

Message: Your access token has expired. Please renew it before submitting the request.

HttpStatusCode: Unauthorized

HttpStatusDescription: Unauthorized

HttpResponseStatus: Completed

At C:\Users\kajalchaudhari\Desktop\test_connect.ps1:22 char:1

+ Get-AzureADUser -Top 10

+ ~~~~~~~~~~~~~~~~~~~~~~~

+ CategoryInfo          : NotSpecified: (:) [Get-AzureADUser], ApiException

+ FullyQualifiedErrorId : 

Microsoft.Open.AzureAD16.Client.ApiException,Microsoft.Open.AzureAD16.PowerShell.GetUser

Can anyone help me with this?

Answer 1

Basically, the error means that your Graph token has been expired, you need to create a new one. In able to automate this try the below script:

$azureAplicationId ="<application id>"

$azureTenantId= "<tenant id>"

$azurePassword = ConvertTo-SecureString "<client secret>" -AsPlainText -Force

$psCred = New-Object System.Management.Automation.PSCredential($azureAplicationId , $azurePassword)

Connect-AzAccount -Credential $psCred -TenantId $azureTenantId -ServicePrincipal

$context = [Microsoft.Azure.Commands.Common.Authentication.Abstractions.AzureRmProfileProvider]::Instance.Profile.DefaultContext

$aadToken = [Microsoft.Azure.Commands.Common.Authentication.AzureSession]::Instance.AuthenticationFactory.Authenticate($context.Account, $context.Environment, $context.Tenant.Id.ToString(), $null, [Microsoft.Azure.Commands.Common.Authentication.ShowDialog]::Never, $null, "https://graph.windows.net").AccessToken

Connect-AzureAD -AadAccessToken $aadToken -AccountId $context.Account.Id -TenantId $context.tenant.id

Get-AzureADUser

I hope this will work.

Want to become an Azure expert? join azure developer training now!!