Skip to content

Latest commit

 

History

History
57 lines (43 loc) · 2.94 KB

finding-the-object-id-for-your-entra-oidc-application.md

File metadata and controls

57 lines (43 loc) · 2.94 KB
Raw
title shortTitle intro product versions topics
Finding the object ID for your Entra OIDC application
Find ID for Entra OIDC
Learn how to find the object ID associated with your {% data variables.product.prodname_emus %} OIDC app.
{% data reusables.gated-features.emus %}
feature
oidc-for-emu
Accounts
Authentication
Enterprise
SSO

You can adjust the lifetime of a session, and how often a managed user account needs to reauthenticate with your IdP, by changing the lifetime policy property of the ID tokens issued for {% data variables.product.prodname_dotcom %} from your IdP. The default lifetime is one hour.

You will need the object ID associated with your {% data variables.product.prodname_emus %} OIDC app to complete these steps. You can find this ID in the Microsoft Entra ID admin center or by using the Microsoft Graph Explorer.

Once you have your object ID, you must use the Microsoft Graph API to configure and assign a lifetime policy to that ID token. See "Configure token lifetime policies" in the Microsoft documentation.

For help completing these steps or configuring the OIDC session lifetime for your IdP, contact Microsoft Support.

Using Microsoft Entra ID admin center to find your object ID

You can use the Microsoft Entra ID admin center UI to view the object ID associated with your {% data variables.product.prodname_emus %} OIDC app.

  1. Log in to the Microsoft Entra ID admin center.
  2. In the left sidebar under "Applications", click Enterprise applications.
  3. Search for the GitHub Enterprise Managed User (OIDC) app. The application ID will be 12f6db80-0741-4a7e-b9c5-b85d737b3a31.
  4. Copy the Object ID value.

Using Microsoft Graph Explorer to find your object ID

You can use the Microsoft Graph Explorer to view the object ID associated with your {% data variables.product.prodname_emus %} OIDC app.

  1. Log in to the Microsoft Graph Explorer tenant that has your OIDC app.

  2. To view the object ID (id in Microsoft Graph) for your {% data variables.product.prodname_emus %} OIDC app, run the following query.

    Request Method: GET

    URL: https://graph.microsoft.com/v1.0/servicePrincipals?$filter=appId eq '12f6db80-0741-4a7e-b9c5-b85d737b3a31'&$select=id,appId,appDisplayName

    Example response:

 {
  "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#servicePrincipals(id,appId,appDisplayName)",
  "value": [
      {
          "id": "c8162c97-32ff-406d-85d3-cc372e3e8384",
          "appId": "12f6db80-0741-4a7e-b9c5-b85d737b3a31",
          "appDisplayName": "GitHub Enterprise Managed User (OIDC)"
      }
  ]
 }