cqrenet/macOS_IntuneManagement
3
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 3 Wiki Activity

Update MSALInfo.md

Browse Source 
typos
This commit is contained in:
Rob Ellis
2024-04-28 20:04:13 +01:00
committed by GitHub
parent f41827f41a
commit 6d86c3e91e
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
MSALInfo.md
View File

@@ -29,7 +29,7 @@ The MSAL authentication will create a token that is used when calling APIs in Mi
The token expire after 1 hour. The script will do a "login" every time it calls an API. MSAL will manage the refresh of the token and only refresh it when it is about to expire or after it has expired. If the token needs to be refreshed e.g. the user was added to a new role, a forced refresh can be triggered in the Profile Info popup. The token expire after 1 hour. The script will do a "login" every time it calls an API. MSAL will manage the refresh of the token and only refresh it when it is about to expire or after it has expired. If the token needs to be refreshed e.g. the user was added to a new role, a forced refresh can be triggered in the Profile Info popup.
The Token info will show information like role memberships, expiry time, scope etc. There are three toke information available: The Token info will show information like role memberships, expiry time, scope etc. There are three tokens with information available:
* MSAL Token - Token created when authenticating with MSAL. Contains the Access and ID tokes * MSAL Token - Token created when authenticating with MSAL. Contains the Access and ID tokes
* Access token - Token contains permissions information and used when calling Microsoft Graph APIs * Access token - Token contains permissions information and used when calling Microsoft Graph APIs
@@ -46,4 +46,4 @@ Support for switching to other tenants can be enabled in Settings. This can be u
* Reduce login time - Getting the list of accessible tenants takes a few seconds extra * Reduce login time - Getting the list of accessible tenants takes a few seconds extra
* Reduce prompts - There is no API in Microsoft Graph that returns a list of tenants the current user has access to. Instead, a Azure management API is used. This will require permissions to Azure management which might cause an additional prompt for Consent when logging in. * Reduce prompts - There is no API in Microsoft Graph that returns a list of tenants the current user has access to. Instead, a Azure management API is used. This will require permissions to Azure management which might cause an additional prompt for Consent when logging in.
**Note:** This is only used when a user has access to multiple tenants. Users from other tenants can always be used without enabling the 'Get Tenant List' setting. **Note:** This is only used when a user has access to multiple tenants. Users from other tenants can always be used without enabling the 'Get Tenant List' setting.