aad sp add
Adds a service principal to a registered Azure AD app
Usage
m365 aad sp add [options]
Options
--appId [appId]ID of the application to which the service principal should be added
--appName [appName]Display name of the application to which the service principal should be added
--objectId [objectId]ObjectId of the application to which the service principal should be added
-h, --help [help]Output usage information. Optionally, specify which section of command's help you want to see. Allowed values are
options,examples,remarks,response,full. Default isoptions.--query [query]JMESPath query string. See http://jmespath.org/ for more information and examples.
-o, --output [output]Output type.
json,text,csv,md,none. Defaultjson.--verboseRuns command with verbose logging.
--debugRuns command with debug logging.
Remarks
Specify either the appId, appName or objectId. If you specify more than one option value, the command will fail with an error.
If you register an application in the portal, an application object as well as a service principal object are automatically created in your home tenant. If you register an application using CLI for Microsoft 365 or the Microsoft Graph, you'll need to create the service principal separately. To register/create an application using the CLI for Microsoft 365, use the m365 aad app add command.
Examples
Adds a service principal to a registered Azure AD app with appId b2307a39-e878-458b-bc90-03bc578531d6.
m365 aad sp add --appId b2307a39-e878-458b-bc90-03bc578531d6
Adds a service principal to a registered Azure AD app with appName Microsoft Graph.
m365 aad sp add --appName "Microsoft Graph"
Adds a service principal to a registered Azure AD app with objectId b2307a39-e878-458b-bc90-03bc578531d6.
m365 aad sp add --objectId b2307a39-e878-458b-bc90-03bc578531d6
Response
- JSON
- Text
- CSV
- Markdown
{
"id": "caeefa7c-1b4e-4257-8f1e-5dffd4e409e4",
"deletedDateTime": null,
"accountEnabled": true,
"alternativeNames": [],
"appDisplayName": "My AAD app",
"appDescription": null,
"appId": "a1023942-9f35-42a6-baf6-390f3a5f89c4",
"applicationTemplateId": null,
"appOwnerOrganizationId": "c2b2a0f7-fa44-4929-a994-757b7b998f01",
"appRoleAssignmentRequired": false,
"createdDateTime": null,
"description": null,
"disabledByMicrosoftStatus": null,
"displayName": "My AAD app",
"homepage": null,
"loginUrl": null,
"logoutUrl": null,
"notes": null,
"notificationEmailAddresses": [],
"preferredSingleSignOnMode": null,
"preferredTokenSigningKeyThumbprint": null,
"replyUrls": [],
"servicePrincipalNames": [
"a1023942-9f35-42a6-baf6-390f3a5f89c4"
],
"servicePrincipalType": "Application",
"signInAudience": "AzureADMyOrg",
"tags": [],
"tokenEncryptionKeyId": null,
"samlSingleSignOnSettings": null,
"addIns": [],
"appRoles": [],
"info": {
"logoUrl": null,
"marketingUrl": null,
"privacyStatementUrl": null,
"supportUrl": null,
"termsOfServiceUrl": null
},
"keyCredentials": [],
"oauth2PermissionScopes": [],
"passwordCredentials": [],
"resourceSpecificApplicationPermissions": [],
"verifiedPublisher": {
"displayName": null,
"verifiedPublisherId": null,
"addedDateTime": null
}
}
accountEnabled : true
addIns : []
alternativeNames : []
appDescription : null
appDisplayName : My AAD app
appId : f0790438-1fde-4340-8e64-3c770757dc4d
appOwnerOrganizationId : c2b2a0f7-fa44-4929-a994-757b7b998f01
appRoleAssignmentRequired : false
appRoles : []
applicationTemplateId : null
createdDateTime : null
deletedDateTime : null
description : null
disabledByMicrosoftStatus : null
displayName : My AAD app
homepage : null
id : 6897ea56-b26f-4257-9101-2df7f1bcf2a2
info : {"logoUrl":null,"marketingUrl":null,"privacyStatementUrl":null,"supportUrl":null,"termsOfServiceUrl":null}
keyCredentials : []
loginUrl : null
logoutUrl : null
notes : null
notificationEmailAddresses : []
oauth2PermissionScopes : []
passwordCredentials : []
preferredSingleSignOnMode : null
preferredTokenSigningKeyThumbprint : null
replyUrls : []
resourceSpecificApplicationPermissions: []
samlSingleSignOnSettings : null
servicePrincipalNames : ["f0790438-1fde-4340-8e64-3c770757dc4d"]
servicePrincipalType : Application
signInAudience : AzureADMyOrg
tags : []
tokenEncryptionKeyId : null
verifiedPublisher : {"displayName":null,"verifiedPublisherId":null,"addedDateTime":null}
id,accountEnabled,appDisplayName,appId,appOwnerOrganizationId,appRoleAssignmentRequired,displayName,servicePrincipalType,signInAudience
29e00a15-cdb7-4d36-a745-30d920173dd8,1,My AAD app,ea8340e9-e464-4597-93f1-e115f9f8c7be,c2b2a0f7-fa44-4929-a994-757b7b998f01,,My AAD app,Application,AzureADMyOrg
# aad sp add --appId "8da75b6a-4272-4b17-8ee1-20ba66e2b06f"
Date: 2023-06-02
## My AAD app (28adf0e2-596c-4012-b24b-b0ec033a8f89)
Property | Value
---------|-------
id | 28adf0e2-596c-4012-b24b-b0ec033a8f89
accountEnabled | true
appDisplayName | My AAD app
appId | 8da75b6a-4272-4b17-8ee1-20ba66e2b06f
appOwnerOrganizationId | c2b2a0f7-fa44-4929-a994-757b7b998f01
appRoleAssignmentRequired | false
displayName | My AAD app
servicePrincipalType | Application
signInAudience | AzureADMyOrg
More information
- Application and service principal objects in Azure Active Directory (Azure AD): https://docs.microsoft.com/en-us/azure/active-directory/develop/active-directory-application-objects
- Create servicePrincipal: https://docs.microsoft.com/en-us/graph/api/serviceprincipal-post-serviceprincipals?view=graph-rest-1.0