API for querying Azure AD directory by using Azure Active Directory authentication with service principles
Clone or download
tomkerkhove Use Guard.NET v1.0.0.2 without explicit error message (#55)
* Update Guards.Net

Signed-off-by: Tom Kerkhove <kerkhove.tom@gmail.com>

* Switch to Guard.NET
Latest commit dd8ed9f Jun 26, 2018


Active Directory connector for Logic Apps

Build status License

API for querying Graph API using Azure Active Directory Application authentication.

Deploy to Azure


The API App allows you to query your AD tenant:

  • Get a list of all users
  • Get a list of all users by company name
  • Get a specific user by user principle name ie. tom.kerkhove@codit.eu

Missing something? Feel free to create open an issue.


All you have to do is host this connector as an Azure API App that you can use in your Logic App. More information can be found here.

Don't want to go through it yourself? Use the "Deploy To Azure" button!


Creating an Azure AD Application

In order to use this connector, it is required to use an Azure AD Application that will be used to query Azure AD. Make sure the application is created in the same AD tenant and has the following permissions:

  • Application Permissions
    • Windows Azure Active Directory API
      • Read directory data

Configuring the API App

The following configuration should be provided in the web.config:

  • ActiveDirectory.Tenant - Name of your AD tenant ie. codito.onmicrosoft.com
  • ActiveDirectory.QueryApplication.ClientId - Application Id of your Azure AD application
  • ActiveDirectory.QueryApplication.AppKey - Authentication key for your Azure AD Application
  • Telemetry.ApplicationInsights - Instrumentation key for Azure Application Inishgts to track exceptions with (Optional)

Here is a complete overview of all the settings:

	<!-- Telemetry -->
	<add key="Telemetry.ApplicationInsights" value="#{Telemetry.ApplicationInsights}#" />

	<!-- Authentication -->
	<add key="ActiveDirectory.Tenant" value="#{ActiveDirectory.Tenant}#" />
	<add key="ActiveDirectory.QueryApplication.ClientId" value="#{ActiveDirectory.QueryApplication.ClientId}#" />
	<add key="ActiveDirectory.QueryApplication.AppKey" value="#{ActiveDirectory.QueryApplication.AppKey}#" />

License Information

This is licensed under The MIT License (MIT). Which means that you can use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the web application. But you always need to state that Codit is the original author of this web application.