How to export the user details with last login information via PowerShell script from Entra ID (Not MsGraph)

Question

How to export the user details with last login information via PowerShell script from Entra ID (Not MsGraph)

Prince Chauhan 0

Please Help me to get this details.

We are looking to export the few user information with last login and On-premises sync enabled details from the Microsoft Entra ID via Powershell script. Please find the sample below which are looking to export via the powershell script. User details Required

Kindly help us to share the right powershell script to get these details

Thank you.

Accepted answer

1 additional answer

Your answer

Answer 1

Sanoop M 1,705 Microsoft External Staff

Hello @Prince Chauhan,

Thank you for posting your query on Microsoft Q&A.

I understand that you want to export few user information like userPrincipalName, displayName, surname, mail, userType, accountEnabled, creationType, LastSigninDate and On-Premises sync enabled through PowerShell script.

Please follow the step by step process as mentioned below.

1.Open PowerShell as an Administrator.

2.Install Microsoft Graph Module. Run the following command to install the Microsoft.Graph module.

Install-Module Microsoft.Graph

3.Import Microsoft Graph Module by running the below PowerShell command.

Import-Module Microsoft.Graph

4.Authenticate with Microsoft Graph

You need to authenticate your session with the appropriate permissions. The command below will prompt you to log in and grant the necessary permissions (you’ll need Directory.Read.All and AuditLog.Read.All scopes):

Connect-MgGraph -Scopes Directory.Read.All,AuditLog.Read.All

A sign-in window will appear where you need to enter your Microsoft Entra ID credentials. Please ensure you have the required permissions to access this data.

5.Run the Command to Export User Data

The following command retrieves user details (like userPrincipalName, displayName, surname, mail, userType, accountEnabled, creationType, LastSigninDate and On-Premises sync enabled) and exports it to a CSV file located at C:\EntraUserDetails.csv

$Users = Get-MgUser -All -Property 'UserPrincipalName','DisplayName','Surname','Mail','CreationType','UserType','OnPremisesSyncEnabled','SignInActivity'

$FilteredUsers = $Users | Select-Object `

@{Name='UserPrincipalName'; Expression={$_.UserPrincipalName}},

@{Name='DisplayName'; Expression={$_.DisplayName}},

@{Name='Surname'; Expression={$_.Surname}},

@{Name='Email'; Expression={$_.Mail}},

@{Name='CreationType'; Expression={$_.CreationType}},

@{Name='UserType'; Expression={$_.UserType}},

@{Name='LastSignInDate'; Expression={$_.SignInActivity.LastSignInDateTime}},

@{Name='OnPremisesSyncEnabled'; Expression={$_.OnPremisesSyncEnabled}}

$FilteredUsers | Export-Csv -Path "C:\EntraUserDetails.csv" -NoTypeInformation -Encoding UTF8

6.Check the Output

After the script runs, the CSV file will be saved at C:\EntraUserDetails.csv. You can open this file in Excel or any other CSV viewer to check the exported data.

I hope this above information provided is helpful. Please feel free to reach out if you have any further questions.

If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

Prince Chauhan 0 Reputation points

2025-03-07T07:26:53.9133333+00:00

Hi Sanoop,

Thanks for the reply!!

But am looking for the powerhsell script not Microsoft.Graph script.
SrideviM 910 Reputation points Microsoft External Staff

2025-03-09T02:28:26.2233333+00:00

Hello Prince Chauhan,

Are you looking for PowerShell Script with Azure AD commands instead of Microsoft Graph? Could you let us know what PowerShell module you currently installed?
Prince Chauhan 0 Reputation points

2025-03-10T06:41:59.87+00:00

Hi Sridevi,

thanks for looking into this.

yes, we are looking for an Powershell script with Azure AD commands and the current version of powershell is 5.1.14393.7254. Please find the below screenshot for your information.

Please share the Powershell script.
SrideviM 910 Reputation points Microsoft External Staff

2025-03-10T06:53:10.2466667+00:00
Hello Prince Chauhan,

To fetch user's last login details, you need to use Get-AzureADAuditSignInLogs command that won't work in AzureAD module.

You need to uninstall your current module version with below commands:

Disconnect-AzureAD Uninstall-Module AzureAD

Now, install AzureADPreview module and connect to Azure AD like this:

Install-Module AzureADPreview Connect-AzureAD

Once AzureADPreview module is installed, you can run Get-AzureADAuditSignInLogs command to fetch user's last login details.

Hope it helps!

Kindly consider upvoting the comment if the information provided is helpful. This can assist other community members in resolving similar issues.
Prince Chauhan 0 Reputation points

2025-03-10T06:59:44.1366667+00:00

Hi Sridevi,

Thanks for the quick reply!

Will we get all the all the details of attributes which i asked intially? Please find the below screenshot am looking to export below details as well along with last signIn details.

for this am looking for an script.

i have one script but that is not working rigth now.
SrideviM 910 Reputation points Microsoft External Staff

2025-03-10T07:21:17.03+00:00

Hello Prince Chauhan,

Please check below solution and if it answers your query, do click Accept Answer and Yes, if you have any further query do let us know.

Answer 2

SrideviM 910 Microsoft External Staff

Hello Prince Chauhan,

I understand you are trying to export the user details with last login information via PowerShell script from Entra ID.

To fetch user's last login details, you need to use Get-AzureADAuditSignInLogs command that won't work in AzureAD module.

You need to uninstall your current module version with below commands:


Disconnect-AzureAD

Uninstall-Module AzureAD

Now, install AzureADPreview module and run below PowerShell command to list it:


Install-Module AzureADPreview

Get-Module -ListAvailable AzureAD*

enter image description here

You can make use of below PowerShell script to export the specific user's details with last login information:


Connect-AzureAD

$specifiedUsers = @("******@xxxxxxxxx.onmicrosoft.com", "sridevi.xxxxxx1_outlook.com#EXT#@xxxxxxxx.onmicrosoft.com", "******@xxxxxxxxxx.onmicrosoft.com")

$userDetails = @()

foreach ($upn in $specifiedUsers) {

    $user = Get-AzureADUser -Filter "UserPrincipalName eq '$upn'" | 

            Select-Object ObjectId, DisplayName, UserPrincipalName, Surname, Mail, UserType, AccountEnabled, CreationType, DirSyncEnabled

    if ($user) {

        $lastSignIn = (Get-AzureADAuditSignInLogs -Filter "UserId eq '$($user.ObjectId)'" | 

                       Sort-Object CreatedDateTime -Descending | 

                       Select-Object -First 1).CreatedDateTime

        $userDetails += [PSCustomObject]@{

            userPrincipalName   = $user.UserPrincipalName

            displayName         = $user.DisplayName

            surname            = if ($user.Surname) { $user.Surname } else { "N/A" }

            mail               = if ($user.Mail) { $user.Mail } else { "N/A" }

            userType           = if ($user.UserType) { $user.UserType } else { "N/A" }

            accountEnabled     = if ($user.AccountEnabled -ne $null) { $user.AccountEnabled } else { "N/A" }

            creationType       = if ($user.CreationType) { $user.CreationType } else { "N/A" }

            OnPremSyncEnabled  = if ($user.DirSyncEnabled -eq $true) { "True" } else { "False" }

            LastLoginDate      = if ($lastSignIn) { $lastSignIn } else { "No sign-in data" }

        }

    } else {

        Write-Host "User $upn not found in Azure AD."

    }

}

$userDetails | Export-Csv -Path "C:\EntraID_UserLogs.csv" -NoTypeInformation

Write-Host "User details exported to C:\EntraID_UserLogs.csv"

enter image description here

To confirm that, I checked the CSV file that have all the required details as below:

enter image description here

Hope this helps!

Please do not forget to click "Accept the answer” and Yes wherever the information provided helps you, this can be beneficial to other community members.

User's image

If you have any other questions or still running into more issues, let me know in the "comments" and I would be happy to help you.

Prince Chauhan 0 Reputation points

2025-03-10T07:47:28.34+00:00

Hi sridevi,

We are looking to export all the users details in one go, instead to go by one.

for that can we user below command in place of "$specifiedUsers = @("@xxxxxxxxx.onmicrosoft.com", "sridevi.xxxxxx1_outlook.com#EXT#@xxxxxxxx.onmicrosoft.com", "@xxxxxxxxxx.onmicrosoft.com")"

command to export all the user details : $users = Get-AzureADUser -All $true
Prince Chauhan 0 Reputation points

2025-03-10T07:52:48.45+00:00

Hi Sridevi,

we are looking to export all the user details in one go, can we use the below command in place of "$specifiedUsers = @("@xxxxxxxxx.onmicrosoft.com", "sridevi.xxxxxx1_outlook.com#EXT#@xxxxxxxx.onmicrosoft.com", "@xxxxxxxxxx.onmicrosoft.com")"

Can we use this command in place of above command to get all the user details : $users = Get-AzureADUser -All $true
SrideviM 910 Reputation points Microsoft External Staff

2025-03-10T07:59:56.0266667+00:00

Hello Prince Chauhan,

If the requirement is to export all the user details in one go:

Yes, you can replace $specifiedUsers with $users = Get-AzureADUser -All $true
Prince Chauhan 0 Reputation points

2025-03-10T08:30:33.87+00:00

Hi Sridevi,

We tried to pull the details but File is getting empty. we tried on different server to export the details and that server have powershell version below.

We tried to install the AzureADPreview but getting the below information. Please help
Prince Chauhan 0 Reputation points

2025-03-10T08:31:31.9133333+00:00

Please check
SrideviM 910 Reputation points Microsoft External Staff

2025-03-10T08:40:47.1166667+00:00
Hello Prince Chauhan,

Make sure to disconnect Azure AD and uninstall that module first with these commands:

Disconnect-AzureAD Uninstall-Module AzureAD

Only after uninstalling Azure AD module, install Azure AD Preview module. When you run Get-Module -ListAvailable AzureAD*, you should only get AzureADPreview module details. This command response should not contain AzureAD module related information.
SrideviM 910 Reputation points Microsoft External Staff

2025-03-11T02:57:18.3666667+00:00

Hello Prince Chauhan,

Following up to see if the above answer was helpful. If this answers your query, do click Accept Answer and Yes, if you have any further query do let us know.
Prince Chauhan 0 Reputation points

2025-03-11T07:24:54.87+00:00

Hi Sridevi,

Hope you are doing well!!

Script is working partially. when am trying to export the details for one user account am able to fetch the details with asked format.

But when am trying to export for all users it is not working and still getting the export of only one user account which i exported intially. Please find the below screenshot for your reference

in the screenshot i tried for $users = Get-AzureADUser -All &true but only one account is exported.

Please Help.
SrideviM 910 Reputation points Microsoft External Staff

2025-03-11T07:39:05.29+00:00
Hello Prince Chauhan,

I observed you missed updating this line in your PowerShell script and using same:

foreach ($upn in $specifiedUsers)

To resolve this, make sure to replace $specifiedUsers with $users in your PowerShell script:

Connect-AzureAD $users = Get-AzureADUser -All $true $userDetails = @() foreach ($user in $users)

Hope this helps!
SrideviM 910 Reputation points Microsoft External Staff

2025-03-11T07:45:18.2233333+00:00

Hello Prince Chauhan,

If this answers your query, do click Accept Answer and Yes for was this answer helpful. And, if you have any further query do let us know.
Prince Chauhan 0 Reputation points

2025-03-11T08:19:36.6933333+00:00
Hi Sridevi,

We did the changes as you suggested but getting the below error. should i leave the script in run until it gets completed?

Please find the below screenshot for your reference.

SrideviM 910 Microsoft External Staff

Hello Prince Chauhan,

Please remove filtering users with user principal name line from your PowerShell script as your requirement is to fetch logs of all users.

Your final script should be like this:

Connect-AzureAD

$users = Get-AzureADUser -All $true
$userDetails = @()

foreach ($user in $users) {
    try {
        $lastSignIn = (Get-AzureADAuditSignInLogs -Filter "UserId eq '$($user.ObjectId)'" |
                       Sort-Object CreatedDateTime -Descending |
                       Select-Object -First 1).CreatedDateTime
    }
    catch {
        $lastSignIn = "Error retrieving sign-in data"
    }

    $userDetails += [PSCustomObject]@{
        UserPrincipalName  = $user.UserPrincipalName
        DisplayName        = $user.DisplayName
        Surname           = if ($user.Surname) { $user.Surname } else { "N/A" }
        Mail              = if ($user.Mail) { $user.Mail } else { "N/A" }
        UserType          = if ($user.UserType) { $user.UserType } else { "N/A" }
        AccountEnabled    = if ($user.AccountEnabled -ne $null) { $user.AccountEnabled } else { "N/A" }
        CreationType      = if ($user.CreationType) { $user.CreationType } else { "N/A" }
        OnPremSyncEnabled = if ($user.DirSyncEnabled -eq $true) { "True" } else { "False" }
        LastLoginDate     = if ($lastSignIn) { $lastSignIn } else { "No sign-in data" }
    }
}

$userDetails | Export-Csv -Path "C:\EntraID_AllUsers.csv" -NoTypeInformation -Encoding UTF8
Write-Host "All user details exported successfully to C:\EntraID_AllUsers.csv"

SrideviM 910 Reputation points Microsoft External Staff

2025-03-11T14:11:16.49+00:00

Hello Prince Chauhan,

Following up to see if the above answer was helpful. If this answers your query, do click Accept Answer and Yes, if you have any further query do let us know.
SrideviM 910 Reputation points Microsoft External Staff

2025-03-12T06:37:10.3233333+00:00

Hello Prince Chauhan,

Following up to see if the above answer was helpful. If this answers your query, do click Accept Answer and Yes, if you have any further query do let us know.
Prince Chauhan 0 Reputation points

2025-03-12T10:07:14.61+00:00

Hi Sridevi,

We tried the script but in most of Last signIn column we are getting the "Error retrieving sign-in data" result. only for 600 accounts we got the data rest of the result showed error.
SrideviM 910 Reputation points Microsoft External Staff

2025-03-12T13:53:49.0966667+00:00

Hello Prince Chauhan,

The issue you're facing is due to Microsoft's default rate limit, which allows only 5 requests per 10 seconds. This limit is in place to ensure the stability of the service and fair access for all users. When too many requests are made in a short time, they can be throttled, leading to slower responses or failures.

To resolve this, try including a retry mechanism with an exponential backoff, so if a request gets throttled, the script will wait and retry instead of failing immediately. Also, add a small delay between requests to minimize the chances of hitting the limit. Additionally, ensure the script fetches only the most recent sign-in log for each user to keep the data load minimal.

Hope this helps!

If this answers your query, do click Accept Answer and Yes for was this answer helpful. And, if you have any further query do let us know.
SrideviM 910 Reputation points Microsoft External Staff

2025-03-13T00:57:08.5733333+00:00

Hello Prince Chauhan,

Following up to see if the above answer was helpful. If this answers your query, do click Accept Answer and Yes, if you have any further query do let us know.
Sanoop M 1,705 Reputation points Microsoft External Staff

2025-03-13T23:00:47.6633333+00:00

Hello Prince Chauhan,

Following up to see if the above answer was helpful. If this answers your query, do click Accept Answer and Yes, if you have any further query do let us know.
Prince Chauhan 0 Reputation points

2025-03-17T10:06:57.1166667+00:00

Hi Sridevi

it is working might be due to too many requests are made this is why not proper data fetched.

Share via

How to export the user details with last login information via PowerShell script from Entra ID (Not MsGraph)

1 additional answer

Your answer