![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(214.4, 48%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAF%3C/text%3E%3C/svg%3E)
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,466 questions
Hello @Aidan Fitzpatrick ,
Thanks for reaching out and welcome to Microsoft Q&A community !!!
You can find Azure AD authentication endpoints including metadata link for Oauth/OpenID connect (JWT token) from App registration blade in Azure AD portal as shown below or just accessing to following link which take you to the same page.
For using OAuth2.0/OIDC protocol (JWT token) with Azure AD, there are two endpoints that are available:
- /authorize endpoint: This endpoint is used when the user tries to get Authenticated and request a Code and IdToken from Azure AD in return for a successful Authentication.
- /token endpoint: Then the second endpoint that is called is the /token endpoint and to this endpoint, the previously received code from AAD is submitted to get an access-token to make further requests to access Azure AD protected APIs, for eg: Microsoft Graph API.
You can find more details on the auth flows here:
- Auth-Code Grant Flow of OAuth: https://learn.microsoft.com/en-us/azure/active-directory/develop/v2-oauth2-auth-code-flow
- Open ID Connect Flow: https://learn.microsoft.com/en-us/azure/active-directory/develop/v2-protocols-oidc
Hope this helps.
-----------
Do let us know if this helps and if there are any more queries around this, please do let us know so that we can help you further. Also, please do not forget to accept the response as an Answer; if the above response helped in answering your query.
