View an AD Users's Group Memberships

This is an interactive task for auditing the group memberships of Azure AD user accounts.

It is a read-only task that doesn't require a privileged account on Azure AD.

Integrations

Required Vault Details

Azure AD

  • Tenant ID
  • Client ID
  • Client Secret

The service principal must have permissions to read Azure AD.

As this is a read-only task, the Azure AD credentials do not require write permissions.

Vault Configuration Wizard

The first time you run a task from this repository, PPA will check the required Vault details exist.

If they don't exist, PPA will ask you to supply the details at the start of the task.

Below you can see a user providing details the first time they run an Active Directory task.

vault-config-wizard

Once the details are added to Vault, the task won't ask for them again.

If you don't know the required details, ask an administrator to run the task or configure Vault manually.

What the Task Does

Once started, this task allows the operator to:

  • Search for and select an Azure AD user account
  • View & download the resultant group membership table
Product Boot Screen

Get PPA for free!

Start automating your estate with a free 30 day trial today. No signup required!

Get PPA Express

Documentation


Theale Court
11-13 High Street, Theale
Reading, Berkshire, RG7 5AH
United Kingdom
+44 (0) 118 324 2444

Logo

Copyright 2020 Osirium Ltd.