Register an app for the Python SDK/Jupyter and Postman in Azure AD
Follow the steps below to register an app in Azure AD to use with the Python SDK, Jupyter notebooks, or Postman. You can use the same steps to register desktop apps and one-off/short-term scripts. Users can sign in using their browser and use the acquired token in for example Jupyter.
Sign in to the Azure portal as an admin.
If you have access to multiple tenants, use the Directory + subscription filter in the top menu to select the tenant in which you want to register an application.
Search for and select Azure Active Directory.
Under Manage, select App registrations > New registrations.
In the Register an application window, enter the app name, and then select Register.
Specify the name and select the supported account types.
Under Redirect URI (optional), select Public client/native (mobile & desktop) and specify the redirect URI:
Select Authentication to add more redirect URIs, and to select device code flow (optional). Then select Save.
Configure API permissions:
Select API permissions. The Microsoft Graph
User.Readpermissions should already be selected.
Select Add a permission and in the next screen, under APIs my organization uses, select the CDF API, for example
For Delegated permissions, select the required permissions for your application, for example
user_impersonation. The delegated permissions filter the permissions a user has based on group memberships, but do not add any permissions.
To use the token inspection endpoint, select
Learn more about the available permissions here.
Select Add permissions.
The API permissions should look similar to this:
Select Grant admin consent for... and confirm that you want to make the new list of permissions active.