Azure Active Directory Authentication Rest endpoint

Aakash Sharma 6 Reputation points
2020-11-16T09:45:42.583+00:00

Hi,

We are trying to implement Oauth token on our custom gateway but looking to authenticate user credentials in Azure Active Directory before token generation. At present don't want to delegate the token generation task to AD.

We did initial proof of concept using Okta as IDP for performing this task.
Okta exposes Authentication APIs that can tell us the user's authenticated status.

More details here -
https://developer.okta.com/docs/reference/api/authn/

Basically we have a okta organization url -
https://xxx.okta.com/api/v1/authn

and we pass a JSON body with username and password information.

I am not able to find anything similar in Azure Active Directory. Are there any authentication api that can be called directly to check user is valid or not.

Any input is appreciated.

thanks,
Aakash

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
21,788 questions
0 comments No comments
{count} vote

1 answer

Sort by: Most helpful
  1. soumi-MSFT 11,781 Reputation points Microsoft Employee
    2020-11-16T12:23:52.957+00:00

    Hello @Aakash Sharma , thank you for reaching out. For using OAuth2.0/OIDC protocol with Azure AD, there are two endpoints that are available:

    1. /authorize endpoint: This endpoint is used when the user tries to get Authenticated and request a Code and IdToken from Azure AD in return for a successful Authentication.
    2. /token endpoint: Then the second endpoint that is called is the /token endpoint and to this endpoint, the previously received code from AAD is submitted to get an access-token to make further requests to access Azure AD protected APIs, for eg: Microsoft Graph API.

    You can find more details on the auth flows here:

    Hope this helps.

    Do let us know if this helps and if there are any more queries around this, please do let us know so that we can help you further. Also, please do not forget to accept the response as an Answer; if the above response helped in answering your query.


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.