Microsoft Azure Application Directory SSO(SAML)

Dinesh Radadiya 1 Reputation point

We are working on a POC for SSO integration with Azure AD for our product(SAAS Based).

We are using SAML base SSO and token encryption is there. We are also able to got the SAML Response but we are not able to decrypt it through Java.

Regarding fetching all users through graph API :
Currently, I am using my personal Microsoft account and I have created users in "All users" section (Home -> Default Directory -> Users - All users).
Now problem is that, when I fetch users through Microsoft graph explorer with my login, I got only one user that's me only not able to fetch other users. Is it not working in my personal account ? or I need other type of account for my poc.


Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,195 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. soumi-MSFT 11,756 Reputation points Microsoft Employee

    @Dinesh Radadiya , When you say you are not able to decrypt the SAML token, can you specify what error you get there.

    Regarding the Graph API, you need to make sure you are either a Global Admin of the tenant or an User Administrator so that you can go ahead and list other users present in the tenant using Graph APIs

    Hope this helps.

    Hope this helps.


    Please take a moment to "Mark as Answer" and/or "Vote as Helpful" wherever applicable. Thanks!