Azure-docs: Granting consent to an application
Hello there,
I'm currently undergoing an automation integration of aad into our product. I need to create an application and give it certain permissions (i.e. Directory.ReadWrite.All). From what I've researched, this isn't yet possible with some cmdlet in powershell. So we have to use Rest-Api. What you've presented here isn't at all helpful. Basically having my account (which is an admin) credentials, the newly created application ids, the service principal and also its secrets, I need to grant it consent to certain permissions without going into the protal and press "Grant permission for this tenant".
Basically, my question is, how can I grant permissions for my tenant within powershell code? Is it possible?
Document Details
⚠Do not edit this section. It is required for docs.microsoft.com ➟ GitHub issue linking.
- ID: 0ac43307-75d4-cb6f-e561-0dd9008f28c6
- Version Independent ID: 8fc47e76-5ee1-6aeb-73e2-c64c44e3e4ed
- Content: Microsoft identity platform scopes, permissions, and consent
- Content Source: articles/active-directory/develop/v2-permissions-and-consent.md
- Service: active-directory
- Sub-service: develop
- GitHub Login: @rwike77
- Microsoft Alias: ryanwi
vivere-dally
All 4 comments
@vivere-dally Thanks for your feedback! We will investigate and update as appropriate.
SaurabhSharma-MSFT
on 1 Apr 2020
@vivere-dally There is no specific Powershell cmdlet available to grant admin consent. You can upvote an existing feature request over here.
However, you can check for this blog which provides a Powershell function to grant permissions silently.
Also, you can use az ad app permission admin-consent Azure CLI to grant application and delegated permissions through admin Consent. Please refer to the documentation here.
SaurabhSharma-MSFT
on 2 Apr 2020
Hello
So the blog post worked. Thank you very much, I've been stuck on this for days now. I think these workarounds should be made more available to the public because I've searched so much and didn't find anything.
vivere-dally
on 2 Apr 2020
@vivere-dally Good to hear that you are unblocked. I will provide your feedback to the content author if it can be documented under any section.
We will now proceed to close this thread. If there are further questions regarding this matter, please reopen it and we will gladly continue the discussion.
SaurabhSharma-MSFT
on 3 Apr 2020
Related issues
jamesgallagher-ie
·
3Comments
spottedmahn
·
3Comments
jharbieh
·
3Comments
Agazoth
·
3Comments
bdcoder2
·
3Comments
Most helpful comment
@vivere-dally There is no specific Powershell cmdlet available to grant admin consent. You can upvote an existing feature request over here.
However, you can check for this blog which provides a Powershell function to grant permissions silently.
Also, you can use
az ad app permission admin-consentAzure CLI to grant application and delegated permissions through admin Consent. Please refer to the documentation here.