jprdonnelly/docs
1
0
Fork 0
mirror of synced 2025-12-22 03:16:52 -05:00
Code Issues Projects Releases Wiki Activity
Files
copilot/add-changelog-file
docs/content/admin/managing-iam/configuring-authentication-for-enterprise-managed-users/finding-the-object-id-for-your-entra-oidc-application.md

3.1 KiB
Raw Permalink Blame History

title, shortTitle, intro, product, versions, topics, redirect_from
title shortTitle intro product versions topics redirect_from
Finding the object ID for your Entra OIDC application Find ID for Entra OIDC app Learn how to find the object ID associated with your {% data variables.product.prodname_emus %} OIDC app. {% data reusables.gated-features.emus %}
feature
oidc-for-emu
Accounts
Authentication
Enterprise
SSO
/admin/identity-and-access-management/configuring-authentication-for-enterprise-managed-users/finding-the-object-id-for-your-entra-oidc-application

You can adjust the lifetime of a session, and how often a managed user account needs to reauthenticate with your IdP, by changing the lifetime policy property of the ID tokens issued for {% data variables.product.prodname_dotcom %} from your IdP. The default lifetime is one hour.

You will need the object ID associated with your {% data variables.product.prodname_emus %} OIDC app to complete these steps. You can find this ID in the Microsoft Entra ID admin center or by using the Microsoft Graph Explorer.

Once you have your object ID, you must use the Microsoft Graph API to configure and assign a lifetime policy to that ID token. See Configure token lifetime policies in the Microsoft documentation.

For help completing these steps or configuring the OIDC session lifetime for your IdP, contact Microsoft Support.

Using Microsoft Entra ID admin center to find your object ID

You can use the Microsoft Entra ID admin center UI to view the object ID associated with your {% data variables.product.prodname_emus %} OIDC app.

  1. Log in to the Microsoft Entra ID admin center.
  2. In the left sidebar under "Applications", click Enterprise applications.
  3. Search for the GitHub Enterprise Managed User (OIDC) app. The application ID will be 12f6db80-0741-4a7e-b9c5-b85d737b3a31.
  4. Copy the Object ID value.

Using Microsoft Graph Explorer to find your object ID

You can use the Microsoft Graph Explorer to view the object ID associated with your {% data variables.product.prodname_emus %} OIDC app.

  1. Log in to the Microsoft Graph Explorer tenant that has your OIDC app.

  2. To view the object ID (id in Microsoft Graph) for your {% data variables.product.prodname_emus %} OIDC app, run the following query.

    Request Method: GET

    URL: https://graph.microsoft.com/v1.0/servicePrincipals?$filter=appId eq '12f6db80-0741-4a7e-b9c5-b85d737b3a31'&$select=id,appId,appDisplayName

    Example response:

 {
  "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#servicePrincipals(id,appId,appDisplayName)",
  "value": [
      {
          "id": "c8162c97-32ff-406d-85d3-cc372e3e8384",
          "appId": "12f6db80-0741-4a7e-b9c5-b85d737b3a31",
          "appDisplayName": "GitHub Enterprise Managed User (OIDC)"
      }
  ]
 }
Reference in New Issue View Git Blame Copy Permalink