How do I know if my tenant is setup for MSAL and Microsoft Graph

Joseph Hoang 21 Reputation points
2021-06-10T23:13:44.063+00:00

I am setting up a app registration, and I see a message stating "Starting June 30th, 2020 we will no longer add any new features to Azure Active Directory Authentication Library (ADAL) and Azure AD Graph. We will continue to provide technical support and security updates but we will no longer provide feature updates. Applications will need to be upgraded to Microsoft Authentication Library (MSAL) and Microsoft Graph. Learn more". How can I find out if I need to perform any migration steps or if I am already setup for MSAL and Microsoft Graph?

Thanks,
Joseph Hoang
jhoang@optimalblue.com

Microsoft Graph
Microsoft Graph
A Microsoft programmability model that exposes REST APIs and client libraries to access data on Microsoft 365 services.
11,775 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
21,270 questions
0 comments No comments
{count} votes

Accepted answer
  1. AmanpreetSingh-MSFT 56,556 Reputation points
    2021-06-11T05:54:08.303+00:00

    Hi @Joseph Hoang · Thank you for reaching out.

    • ADAL and MSAL are authentication libraries that you use in your application code to federate with Azure AD for authentication.
    • Azure AD Graph API and Microsoft Graph API are the APIs that your application(s) can use to create/read/update/delete information in Azure AD.

    You need to check your application(s) code to identify how those are federated with Azure AD and which Graph API the application(s) are configured to use. As of now Azure AD supports all of these, you need to check which ones are being used by your applications.

    The only change that you would need to make in the tenant, is for the applications which are using Azure AD Graph API.

    • The first step is to identify which applications are using Azure AD Graph API so that you can check the Client ID (App ID) configured for those applications.
    • Under Azure AD > App Registration > search with the Client ID and replace Azure AD Graph API permissions with Microsoft Graph API permissions under API Permissions blade of those applications.

    Read more:
    Migrate apps from ADAL to MSAL
    Azure AD Graph API to Microsoft Graph API migration checklist

    -----------------------------------------------------------------------------------------------------------

    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.


0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.