堆栈内存溢出
  简体   繁体   English

列出有权访问企业应用程序AzureAD RBAC的组

[英]List groups which has access to Enterprise application AzureAD RBAC

 原文  2018-02-06 15:11:14       python/ azure/ adal/ azure-cli

问题描述

I'm trying to use graph REST api / python of AzureAd. 我正在尝试使用AzureAd的图形REST api / python。 I'm logged in with service principal. 我已使用服务主体登录。

Is it possible to list users/groups which has access to enterprise application? 是否可以列出有权访问企业应用程序的用户/组?
If so: How? 如果是这样:如何?

在此处输入图片说明

2 个解决方案

解决方案1
 1  2018-02-06 16:33:19

Look in the RestAPI if you found what you need: https://msdn.microsoft.com/Library/Azure/Ad/Graph/api/api-catalog 如果您找到了所需的内容,请查看RestAPI: https ://msdn.microsoft.com/Library/Azure/Ad/Graph/api/api-catalog

If you don't find it, it's likely not possible. 如果找不到,则可能无法实现。 If you found it, this RestAPI is exposed in Python by the azure-graphrbac package: 如果找到它,则该AzureAPI将通过azure-graphrbac包在Python中azure-graphrbac

If you found it in the RestAPI, but not in the Python package, open an issue for support to the endpoint your need: 如果您在RestAPI中找到了它,但在Python包中找不到了,请打开一个问题以支持您所需的端点:

https://github.com/Azure/azure-sdk-for-python/issues https://github.com/Azure/azure-sdk-for-python/issues

(I work in the Azure SDK for Python team at MS) (我在MS的Azure SDK for Python团队中工作)

解决方案2
 0  2018-02-07 08:40:10

Thanks to @laurent-mazuel I found the problem that Navigation Properties are missing from SDK 感谢@ laurent-mazuel,我发现SDK中缺少导航属性的问题

Workaround: 解决方法:
From documentation: Service Principal Entity has Navigation property appRoleAssignedTo . 从文档中: 服务主体实体具有导航属性appRoleAssignedTo Then the solution was to use raw API endpoint as folows: https://graph.windows.net/{tenant_id}/servicePrincipals/{service_principal}/appRoleAssignedTo/ and extend ServicePrincipalOperations in azure-sdk-for-python 然后,解决方案是使用原始API端点作为以下对象: https://graph.windows.net/{tenant_id}/servicePrincipals/{service_principal}/appRoleAssignedTo/ ://graph.windows.net/{tenant_id}/servicePrincipals/{service_principal}/appRoleAssignedTo https://graph.windows.net/{tenant_id}/servicePrincipals/{service_principal}/appRoleAssignedTo/并在azure-sdk-for-python扩展ServicePrincipalOperations

Which returns AppRoleAssignment entities. 它返回AppRoleAssignment实体。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 Microsoft Graph API 使用企业应用程序的访问令牌发送 email - Microsoft Graph API send email using Access Token of Enterprise Application Python:使用groupby获取组中值最接近5的行 - Python : Getting the Row which has the closest value to 5 in groups using groupby Dask:使用groupby获取具有最大值的行 - Dask: Getting the Row which has the max value in groups using groupby 如何替换包含多个组的列表中值的第一个实例? - How to replace first instance of a value in a list which consits of multiple groups? 适用于企业Web应用程序的Django - Django for enterprise web application 访问在 sqlalchemy 中没有密钥的 json - Access json which has no key in sqlalchemy 如何使用 python 访问 Azure AD 组列表? - How to access the list of Azure AD Groups using python? Python:在列表中查找频率为2的元素 - Python: Find element in the list which has frequency = 2 如何格式化具有两个元素的列表 - How to format a list which has two elements 如何拆分有空白列出的字符串? - How to split a string which has blank to list?
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM