You can use Microsoft Graph to query SSO-enabled applications and filter by the preferredSingleSignOnMode (password
, saml
, notSupported
, and oidc
).
For example, to get all SSO-enabled SAML applications, you can follow these steps:
- Sign in to Graph Explorer using Application Administrator or Global Administrator account.
- Run
GET https://graph.microsoft.com/v1.0/servicePrincipals?$filter=preferredSingleSignOnMode eq 'saml'&$select=appDisplayName,preferredSingleSignOnMode
call. - This will return all Application with SAML enabled.
Let me know if this helps and if you run into any issues.
If the information helped you, please Accept the answer. This will help us as well as others in the community who may be researching similar questions.