steampipe plugin install azuread

Table: azuread_identity_provider - Query Azure Active Directory Identity Providers using SQL

An Azure Active Directory Identity Provider is a service that authenticates users for access to applications and services. It provides a way to configure federation and single sign-on, enabling users to use their existing credentials to sign-in to multiple applications. Azure AD supports a variety of identity providers, including Microsoft Active Directory, Facebook, Google, and more.

Table Usage Guide

The azuread_identity_provider table provides insights into Identity Providers within Azure Active Directory. As a system administrator or security analyst, explore provider-specific details through this table, including provider type, client id, and client secret. Utilize it to uncover information about providers, such as their configuration details and the applications they are linked to.


Basic info

Discover the identities that are registered within your Azure Active Directory. This can assist in managing access and authentication within your organization.


Schema for azuread_identity_provider

_ctxjsonbSteampipe context in JSON form.
client_idtextThe client ID for the application. This is the client ID obtained when registering the application with the identity provider.
client_secrettextThe client secret for the application. This is the client secret obtained when registering the application with the identity provider. This is write-only. A read operation will return ****.
filtertext=Odata query to search for resources.
idtext=The ID of the identity provider.
nametext=The display name of the identity provider.
sp_connection_nametext=, !=, ~~, ~~*, !~~, !~~*Steampipe connection name.
sp_ctxjsonbSteampipe context in JSON form.
tenant_idtext=, !=, ~~, ~~*, !~~, !~~*The Azure Tenant ID where the resource is located.
titletextTitle of the resource.
typetextThe identity provider type is a required field. For B2B scenario: Google, Facebook. For B2C scenario: Microsoft, Google, Amazon, LinkedIn, Facebook, GitHub, Twitter, Weibo, QQ, WeChat, OpenIDConnect.


This table is available as a standalone Exporter CLI. Steampipe exporters are stand-alone binaries that allow you to extract data using Steampipe plugins without a database.

You can download the tarball for your platform from the Releases page, but it is simplest to install them with the script:

/bin/sh -c "$(curl -fsSL" -- azuread

You can pass the configuration to the command with the --config argument:

steampipe_export_azuread --config '<your_config>' azuread_identity_provider