You can add the -years parameter for another time frame. If you need a new SPN, create that object with az ad sp create-for-rbacīy default, this account is valid for one year from now on. To check the current active subscription, use az account show Create a new SPN my subscription named S2): az account set -subscription "S2" To work with a specific Azure subscription, set it by name (e.g. az account list -all -out jsonc > C:\temp\mysubscriptions.txt Set the active Azure subscription Or redirect the output to a file for further usage. To get the list, use: az account list -all -out jsonc The Azure CLI now automatically lists entitled Azure subscriptions for the authenticated user, similar to here with my account. You may now close this window." So, the browser can be closed. You have signed in to the Microsoft Azure Cross-platform Command Line Interface application on your device. So, the next step is to open the browser to register your current device with that code and to login with your Azure management account.Īfter the successful login, the browser informs: "Microsoft Azure Cross-platform Command Line Interface. With az login, I can connect to my Azure subscriptions, see Interactive log-in. Check out Get started with Azure CLI 2.0 for the first steps.Īz -version delivers the installed version of the CLI, in my case 2.0.21. So, let's open a command prompt and try some CLI commands - they start with "az". See Install Azure CLI 2.0 on Windows for other platforms as Linux and for more details.Īfter the installation, you need to have a Global Admin of an Office 365 tenant for the login process. I used the simple approach with Azure CLI for doing that job. There are multiple ways to create or maintain SPNs. This blog post is for developers and DevOps people who are already using SPN's and want to renew them. And that's why I am writing this article. So, at some time, the expiration date is reached. You can get more information about SPN's at Service Principal Names and here. That is similar to a Global Admin in Office 365, but just for apps and usually with a predefined expiration date. for deleting objects in AAD, a so called Service Principal Name (SPN) can be used. When an automated task or an app needs to access data from Office 365, you need to create an app in the tenant's Azure Active Directory (AAD).
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |