Ami*_*dav 6 azure azure-active-directory azure-ad-graph-api azure-ad-b2c
我想在 Azure Active Directory B2C 上创建用户,我按照此处给定链接中的每个步骤进行操作
网址:- https://graph.windows.net/testinggmail.onmicrosoft.com/users?api-version=1.6
类型:- 发布
标题:-
Authorization:Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsIng1dCI6IlNTUWRoSTFjS3ZoUUVEU0p4RTJnR1lzNDBRMCIsImtpZCI6IlNTUWRoSTFjS3ZoUUVEU0p4RTJI6Imh0dHBzOi8vc3RzLndpbmRvd3MubmV0LzBkZjk3YTliLTQ3MDAtNDY5NS05ZjUyLWNkYzJiYzljMTk2Ny8iLCJpYXQiOjE1MjA4Mzg4OTAsIm5iZiI6MTUyMDgzODg5MCwiZXhwIjoxNTIwODQyNzkwLCJhaW8iOiJZMk5nWU9pNFg3NXh3NGJGcTNYMnFaMmVkZW44T1FBPSIsImFwcGlkIjoiYjc2MDFmOTktYjFiZS00YWQ0LTljMmMtYTVlNzBiYmZkNWNhIiwiYXBwaWRhY3IiOiIxIiwiZV9leHAiOjI2MjgwMCwiaWRwIjoiaHR0cHM6Ly9zdHMud2luZG93cy5uZXQvMGRmOTdhOWItNDcwMC00Njk1LTlmNTItY2RjMmJjOWMxOTY3LyIsIm9pZCI6IjhlNTQwMmViLTRkNTMtNDc5Ny1iOWRjLWFlOGJmMzRmMTE4MCIsInJvbGVzIjpbIkRldmljZS5SZWFkV3JpdGUuQWxsIiwiRGlyZWN0b3J5LlJlYWQuQWxsIiwiTWVtYmVyLlJlYWQuSGlkZGVuIiwiRGlyZWN0b3J5LlJlYWRXcml0ZS5BbGwiLCJEb21haW4uUmVhZFdyaXRlLkFsbCIsIkFwcGxpY2F0aW9uLlJlYWRXcml0ZS5Pd25lZEJ5IiwiQXBwbGljYXRpb24uUmVhZFdyaXRlLkFsbCJdLCJzdWIiOiI4ZTU0MDJlYi00ZDUzLTQ3OTctYjlkYy1hZThiZjM0ZjExODAiLCJ0ZW5hbnRfcmVnaW9uX3Njb3BlIjoiQVMiLCJ0aWQiOiIwZGY5N2E5Yi00NzAwLTQ2OTUtOWY1Mi1jZGMyYmM5YzE5NjciLCJ1dGkiOiJTYVU5Y3psb3kweW51NnNueUhVUkFBIiwidmVyIjoiMS4wIn0.YQf6dWra1jua8XMHdqqqd5vrpVUxil_6YMM00drLl9LmOchUY7AtPOXF6T_p7Bmf2BwOWL02bsm7VJCM5cx_TD0cMzbOr4uybmyJJvDqfi1whvgOWbDnY_J9ArJWQMuk7jPIBPS_WT8UYsmM_ivRmcQcRxZtcYCrAaWWOJFeWFVucJFz9G-ld0qi4TU10-Qk9_owREDoitlwYEZwEzSUU-HauDCkjNVzDNhefXrjlJHMzXcsJMnVyX7txkZpiqcsM8H-2EKbFmavT4fN05zUh1Hy6hSLnKv24uDyB3hf2qEZvOaygDUPFRcbFSWH39yp698FGh9Ayr8vHr9wLRHHdA
Content-Type:application/json
请求正文:-
{
"accountEnabled": true,
"signInNames": [
{
"type": "emailAddress",
"value": "joeconsumer@gmail.com"
}
],
"creationType": "LocalAccount",
"displayName": "Joe Consumer",
"mailNickname": "joec",
"passwordProfile": {
"password": "P@ssword!",
"forceChangePasswordNextLogin": false
},
"passwordPolicies": "DisablePasswordExpiration"
}
回复 :-
{
"odata.error": {
"code": "Request_BadRequest",
"message": {
"lang": "en",
"value": "One or more properties contains invalid values."
},
"date": "2018-03-12T07:24:13",
"requestId": "fef2037f-8c6f-4190-8c5a-727dcccde5eb",
"values": null
}
}'
一些 API 工作正常,如GetUsers 和TokenAcuire,但不能创建用户,我在 google 上搜索了它也得到了很多解决方案,但对我不起作用链接是这里我还尝试过什么在这里,如果我按照创建单独 Direcotry 的步骤,那么我会得到错误权限不足,无法完成操作。
使用 Azure AD Graph API 创建的这种类型的用户适用于 Azure AD B2C:
\n\n\n\n\n从版本 1.6 开始,Graph API 支持为 Azure Active Directory B2C 租户创建本地和\n 社交帐户用户。
\n
如果您尝试对普通 Azure AD 租户使用此 Azure AD Graph API 请求,它将收到与您的错误消息相同的错误消息。
\n\n因此,请确保您尝试查询的租户是 B2C 租户\xef\xbc\x9a
\n\n尝试使用B2C租户的全局管理员(例如username@b2ctenant.onmicrosoft.com)来获取令牌。然后使用head中的token来使用API:
\n\n要求:
\n\n POST https://graph.windows.net/myorganization/users?api-version=1.6\n正文内容类型:application/json:
\n\n{ \n\n "accountEnabled": true,\n "signInNames": [ \n {\n "type": "emailAddress", \n "value": "joeconsumer@gmail.com"\n }\n ],\n "creationType": "LocalAccount", \n "displayName": "Joe Consumer", \n "mailNickname": "joec", \n "passwordProfile": {\n "password": "P@ssword!",\n "forceChangePasswordNextLogin": false \n },\n "passwordPolicies": "DisablePasswordExpiration"\n}\n希望这可以帮助!
\n| 归档时间: |
|
| 查看次数: |
5750 次 |
| 最近记录: |