Table: azuread_identity_provider - Query Azure Active Directory Identity Providers using SQL
An Azure Active Directory Identity Provider is a service that authenticates users for access to applications and services. It provides a way to configure federation and single sign-on, enabling users to use their existing credentials to sign-in to multiple applications. Azure AD supports a variety of identity providers, including Microsoft Active Directory, Facebook, Google, and more.
Table Usage Guide
The azuread_identity_provider table provides insights into Identity Providers within Azure Active Directory. As a system administrator or security analyst, explore provider-specific details through this table, including provider type, client id, and client secret. Utilize it to uncover information about providers, such as their configuration details and the applications they are linked to.
Examples
Basic info
Discover the identities that are registered within your Azure Active Directory. This can assist in managing access and authentication within your organization.
select name, idfrom azuread_identity_provider;select name, idfrom azuread_identity_provider;Schema for azuread_identity_provider
| Name | Type | Operators | Description |
|---|---|---|---|
| _ctx | jsonb | Steampipe context in JSON form, e.g. connection_name. | |
| client_id | text | The client ID for the application. This is the client ID obtained when registering the application with the identity provider. | |
| client_secret | text | The client secret for the application. This is the client secret obtained when registering the application with the identity provider. This is write-only. A read operation will return ****. | |
| filter | text | = | Odata query to search for resources. |
| id | text | = | The ID of the identity provider. |
| name | text | = | The display name of the identity provider. |
| tenant_id | text | The Azure Tenant ID where the resource is located. | |
| title | text | Title of the resource. | |
| type | text | The identity provider type is a required field. For B2B scenario: Google, Facebook. For B2C scenario: Microsoft, Google, Amazon, LinkedIn, Facebook, GitHub, Twitter, Weibo, QQ, WeChat, OpenIDConnect. |
Export
This table is available as a standalone Exporter CLI. Steampipe exporters are stand-alone binaries that allow you to extract data using Steampipe plugins without a database.
You can download the tarball for your platform from the Releases page, but it is simplest to install them with the steampipe_export_installer.sh script:
/bin/sh -c "$(curl -fsSL https://steampipe.io/install/export.sh)" -- azureadYou can pass the configuration to the command with the --config argument:
steampipe_export_azuread --config '<your_config>' azuread_identity_provider