Adam Horsewood

My feedback

  1. 793 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    under review  ·  Azure AD Team responded

    The MFA team is currently working on adding get/set/read/delete abilities for StrongAuthentication data to the Graph API.

    Richard

    An error occurred while saving the comment
    Adam Horsewood commented  · 

    I also posted a similar CR. https://feedback.azure.com/forums/34192--general-feedback/suggestions/31620178-update-web-api-to-support-querying-users-two-facto

    This would be really useful, and given the back end functionality appears to be there, should be actionable.

    Thanks

    An error occurred while saving the comment
    Adam Horsewood commented  · 
    Adam Horsewood supported this idea  · 
    An error occurred while saving the comment
    Adam Horsewood commented  · 

    Currently, there are a two main projects, that I'm aware of, that allow third party applications to query azure. These are:

    * https://docs.microsoft.com/en-us/azure/active-directory/develop/active-directory-graph-api
    * https://developer.microsoft.com/en-us/graph/

    The latter seems to have been succeeded by the former, but the documentation isn't as strong for SDK's (specifically python).

    I would like to be able to query azure to see if the users in my Azure active directory have two factor required on login.

    I'm wrting a tool which interacts with several cloud service providers, to determine the state of users / application keys. Security issues are its main focus and I've not been able to implement similar functionality with azure.

    I'm told this is possible only by power shell. If it is possible by power shell, then the commands being executed must be being sent to azure somehow. If its via a web API, the API exists, but may not be documented if its interacting with either of those two API's.

Feedback and Knowledge Base