Add Users in Azure AD Group

-

 

Add Users in Azure AD groups using c#

 

Azure App Registration Steps

Step 1: Go to Azure Portal

Step 2: Open App Registrations

  • In the search bar at the top, type "App registrations" and click it.
  • Click "New registration".

Step 3: Register the App

  • Name: Enter a name like GraphApiApp or GroupManagerApp.
  • Supported account types: Select
    • "Accounts in this organizational directory only" (for your tenant).
  • Redirect URI: Leave blank (not needed for backend apps) or add https://localhost (for testing).

Click "Register".

Step 4: Configure API Permissions

  • After registration, in the app page:
  • Go to API permissions → Click "Add a permission" → Microsoft Graph → Application permissions (Important!).
  • Search and select these permissions:
    • GroupMember.ReadWrite.All (To add users to groups)
    • User.Read.All  (To read user info)
  • After adding, click "Grant admin consent" (Important! An Admin must do this.)

Step 5: Create Client Secret (Password)

  • Go to Certificates & secrets → Click "New client secret".
  • Enter a description (like "GraphSecret") and choose an expiry (recommend 6 or 12 months).
  • After creating, copy the secret value immediately and save it securely — you cannot see it again later.

Step 6: Note Down Important Values

You will need these for your C# code:

  • Tenant ID (found in Overview page)
  • Client ID (App ID from Overview page)
  • Client Secret (you just created)

Now your App Registration is ready!

You can now authenticate in C# using Client ID, Tenant ID, and Client Secret and call Microsoft Graph APIs.

Quick Recap Diagram:

Azure AD

 

 ── App Registration

     ── Name: GraphApiApp

     ── Permissions:

         ── GroupMember.ReadWrite.All

         └── User.Read.All

     ── Client Secret: [SAVE THIS]

     └── Values to note: Tenant ID, Client ID

 

 └── Ready to call Microsoft Graph from C# 🚀

 

C# code

Install these NuGet Packages

Install-Package Microsoft.Graph

Install-Package Azure.Identity

using Azure.Identity;

using Microsoft.Graph;

using Microsoft.Graph.Models;

class Program

{

    static async Task Main(string[] args)

    {

        // Values from your Azure App Registration

        string clientId = "e65ddf07-f9f1-4e48-82c2-1a17957bf2a9";

        string tenantId = "cbac33f8-3a63-4a84-bc28-436247af6783";

        string clientSecret = "xxx";

        // Build the credential

 var clientSecretCredential = new ClientSecretCredential(

            tenantId, clientId, clientSecret);

        // Pass the credential to GraphServiceClient

        var graphClient = new GraphServiceClient(clientSecretCredential);

        var groupId = "ef3bec9a-15ca-4e07-bf5d-c4a65838f25a";  //CCBSS_SCR_Members_Pagenation

        var userId = "974c9a4a-ee0f-4c31-b6a3-2b98d28b2574";  //  This is the User's Object ID in Azure AD->"GlobalAdmin@qnsq.onmicrosoft.com"

        // Create the reference URL

        var directoryObject = new ReferenceCreate

        {

            OdataId = $"https://graph.microsoft.com/v1.0/directoryObjects/{userId}"

        };

        // Add the user to the group

        await graphClient.Groups[groupId].Members.Ref

            .PostAsync(directoryObject);

        Console.WriteLine("User added successfully to the group!");

    }

}


 

 

Comments

Post a Comment

Popular posts from this blog

SPFX setup & deployment

-
  Setting up SharePoint Framework (SPFx) for SharePoint Online involves several steps. Below is a guide to help you set up SharePoint Framework for SharePoint Online compatibility: Note: please refer below link to get latest update https://learn.microsoft.com/en-us/sharepoint/dev/spfx/set-up-your-development-environment Prerequisites: Node.js and npm: Ensure you have Node.js installed. You can download it from nodejs.org . spfx support version => node-v18.17.1-x64 npm and yomen -> >npm install -g yo gulp >npm install -g @microsoft/generator-sharepoint SPFx generally works with the LTS (Long-Term Support) version of Node.js. Yeoman and Gulp: Install Yeoman and Gulp globally using npm. bash Copy code npm install -g yo gulp SharePoint Online Tenant Configuration: Developer Site: Create a developer site collection in your SharePoint Online tenant. This site collection is used for testing your SPFx web parts. App Catalog: Create an App Catalog site collection in your SharePo...
Read more

Sites.Selected | Graph API SharePoint Permission

-
Image
  SharePoint Site Collection Permission   The "sites.selected" permission in Microsoft Graph API allows you to grant an application access to specific SharePoint sites instead of all SharePoint sites in the tenant.   Step1: To   Configure "Sites.Selected" Permission in Azure App Registration To use "sites.selected" , you need to: Register an App in Azure AD . Grant "Sites.Selected" Permission to the app. Manually Grant Access to the specific SharePoint site. Use Microsoft Graph API or PowerShell to assign the required role (Read/Write).   Step 1: Register an App in Azure AD Go to Azure Portal → Azure Active Directory → App Registrations . Click New registration . Provide a name (e.g., SharePointAccessApp). Choose Accounts in this organizational directory only . Click Register . Step 2: Add "Sites.Selected" API Permission Navigate ...
Read more

Configure the SharePoint Online App Catalog

-
Image
  You can create an Sharepoint Online app catalog site collection in few simple steps: Sign into Office 365 as a global admin or SharePoint admin. Select the app launcher icon   in the upper left and choose  Admin  to open the Office 365 admin center (if you don’t see the Admin tile, you don’t have Office 365 administrator permissions in your organization). In the left pane, choose  Admin centers  >  SharePoint .  Click on  ‘More Features’  from the left navigation/pane. Now, click on the  ‘Open’  button under Apps. Select  apps  in the left pane, and then select  App Catalog. Select  Create a new Sharepoint app catalog site , and then select  OK . On the Create App Catalog Site Collection page, enter the required information, and then select  OK . An app catalog site collection has been created.  Once the App Catalog site collection is created successfully, click on the new link to th...
Read more