Azure AD

Azure AD

Azure Active Directory is an Identity and Access Management cloud solution that extends your on-premises directories to the cloud and provides single sign-on to thousands of cloud (SaaS) apps and access to web apps you run on-premises.

This connector is available in the following products and regions:

Service Class Regions
Logic Apps Standard All Logic Apps regions except the following:
     -   Azure Government regions
     -   Azure China regions
Flow Standard All Flow regions except the following:
     -   US Government (GCC)
PowerApps Standard All PowerApps regions except the following:
     -   US Government (GCC)

To use this integration, you will need access to an Azure Active Directory account with sufficient privileges. To make a connection, select Sign In. You will be prompted to provide your account information, follow the remainder of the screens to create a connection.

To use the Azure AD connector, the account needs to have the following administrator permissions:

  • Group.ReadWrite.All
  • User.ReadWrite.All
  • Directory.ReadWrite.All

More information on Graph permissions and how to configure them can be found here: https://aka.ms/p1sylu

You're now ready to start using this integration.

Throttling Limits

Name Calls Renewal Period
API calls per connection 100 60 seconds

Actions

Add user to group

Add a user to a group in this AAD tenant.

Required Parameters

Group Id
string
Unique identifer of a group (Ex. '40639f36-46a6-73a6-91e2-9584b7913429').
User Id
string
Unique identifer of a user (Ex. '5e6cf5c7-b511-4842-6aae-3f6b8ae5e95b').

Assign manager

Assign a manager for a user.

Required Parameters

User Id or Principal Name
string
Unique identifier of a user (Ex. 'user@tennant.onmicrosoft.com' or '5f6ce5c7-b521-4842-9bbe-3f6d5aa5e35b').
User Id of the Manager
string
Unique identifer of a manager (Ex. '5f6cf5c7-a561-4842-9aae-3e6d8ce5e95b').

Check group membership

If the user is a member of the given group, the result will contain the given id. Otherwise the result will be empty.

Required Parameters

User Id or Principal Name
string
Unique identifier of a user (Ex. 'user@tennant.onmicrosoft.com' or '5f6ce5c7-b521-4842-9bbe-3f6d5aa5e35b').

Optional Parameters

Group Id
string
Unique identifier for the group (Ex. '40649f36-46b6-46a6-95e1-9454b7433219').

Returns

Create group

Create a group in your AAD tenant.

Required Parameters

Display Name
string
Display name of the new group.
Description
string
Description of the new group.
Mail Nickname
string
The mail alias of the new group.
Security Enabled
boolean
True if the new group is a security group.
Mail Enabled
boolean
True if the new group is a mailing group.

Optional Parameters

string
Choose 'Unified' for an O365 group. Choose 'None' for a security group.

Returns

@odata.context
string
@odata.context
id
string
id
deletedDateTime
string
deletedDateTime
classification
string
classification
createdDateTime
date-time
createdDateTime
description
string
description
displayName
date-time
displayName
groupTypes
array of string
groupTypes
mail
string
mail
mailEnabled
boolean
mailEnabled
mailNickname
date-time
mailNickname
onPremisesLastSyncDateTime
string
onPremisesLastSyncDateTime
onPremisesSecurityIdentifier
string
onPremisesSecurityIdentifier
onPremisesSyncEnabled
boolean
onPremisesSyncEnabled
proxyAddresses
array of string
proxyAddresses
renewedDateTime
date-time
renewedDateTime
securityEnabled
boolean
securityEnabled
visibility
string
visibility

Create user

Create a new user in your AAD tenant.

Required Parameters

Account Enabled
boolean
True if the new account should be enabled when it is created.
Display Name
string
The name displayed in the address book for the user.
Mail Nickname
string
The mail alias for the user.
Password
string
The password for the user. The user will be required to change the password on the next login.
User Principal Name
string
The user principal name (UPN) of the user.

Optional Parameters

Given Name
string
The user's given name (first name).
Surname
string
The user's surname (family name or last name).
Business Phone
string
Business phone number for the new user in any format such as '1 (234) 567-8910'.
Department
string
The name for the department in which the user works.
Job Title
string
The user’s job title.
Mobile Phone
string
The mobile phone number for the user in any format such as '1 (234) 567-8910'.
Office Location
string
The office location in the user's place of business.
Preferred Language
string
The preferred language for the user. Should follow ISO 639-1 Code; for example 'en-US'.

Returns

Get group

Get details for a group.

Required Parameters

Group Id
string
Unique identifer of a group (Ex. '40639f36-46a6-73a6-91e2-9584b7913429').

Returns

Get group members

Get the users who are members of a group.

Required Parameters

Group Id
string
Unique identifer of a group (Ex. '40639f36-46a6-73a6-91e2-9584b7913429').

Optional Parameters

Top
integer
Limit on the number of results to return (default = all).

Returns

Get groups of a user

Get the groups a user is a member of.

Required Parameters

User Id or Principal Name
string
Unique identifier of a user (Ex. 'user@tennant.onmicrosoft.com' or '5f6ce5c7-b521-4842-9bbe-3f6d5aa5e35b').
Security Enabled Only
boolean
Determines if only security enabled groups should be fetched.

Returns

Get user

Get details for a user.

Required Parameters

User Id or Principal Name
string
Unique identifier of a user (Ex. 'user@tennant.onmicrosoft.com' or '5f6ce5c7-b521-4842-9bbe-3f6d5aa5e35b').

Returns

Remove Member From Group

Remove Member From Group

Required Parameters

Group Id
string
The Id of the group.
Member Id
string
The Id of the member.

Update user

Update the info for a user.

Required Parameters

User Id or Principal Name
string
Unique identifier of a user (Ex. 'user@tennant.onmicrosoft.com' or '5f6ce5c7-b521-4842-9bbe-3f6d5aa5e35b').

Optional Parameters

User Principal Name
string
The user principal name (UPN) of the user.
Display Name
string
The name displayed in the address book for the user.
Mail Nickname
string
The mail alias for the user.
Given Name
string
The given name (first name) of the user.
Surname
string
The user's surname (family name or last name).
Account Enabled
boolean
True if the new account should be enabled.
Job Title
string
The user’s job title.
Department
string
The name for the department in which the user works.
Mobile Phone
string
The mobile phone number for the user in any format such as '1 (234) 567-8910'.
Office Location
string
The office location in the user's place of business.
Preferred Language
string
The preferred language for the user. Should follow ISO 639-1 Code; for example 'en-US'.
Business Phone
string
Business phone number for the new user in any format such as '1 (234) 567-8910'.

Definitions

GetGroup_Response

Created Date Time
date-time
Date-time the group was created.
Deleted Date Time
date-time
Date-time the group was deleted.
Description
string
An optional description for the group.
Display Name
string
The display name for the group.
Id
string
The unique identifier for the group.
Mail
string
The SMTP address for the group.
Mail Enabled
boolean
True if the group is mail-enabled.
On Premises Last Sync Date Time
date-time
A date-time indicating the last time at which the group was synced with the on-premises directory.
On Premises Sync Enabled
boolean
True if this group is synced from an on-premises directory.
Security Enabled
boolean
True if the group is a security group.
Visibility
string
Visibility of the group (public or private).

GetUser_Response

Business Phones
array of string
Display Name
string
The name displayed in the address book for the user.
Given Name
string
The given name (first name) of the user.
Id
string
A unique identifer for the user.
Job Title
string
The user’s job title.
Mail
string
The SMTP address for the user.
Mobile Phone
string
The primary cellular telephone number for the user.
Office Location
string
The office location in the user's place of business.
Preferred Language
string
The preferred language for the user. Should follow ISO 639-1 Code; for example 'en-US'.
Surname
string
The user's surname (family name or last name).
User Principal Name
string
The user principal name (UPN) of the user.

GetMemberGroups_Response

Member Group Id
string
An id of a group the user is a member of.

GetGroupMembers_Response

Group Members
array of GetUser_Response
Array of users that are members of the group.