June 29th, 2022

Azure AD OAuth client credential flow with custom certificate walk-through

Developer Support
Cloud Solution Architects

Nicola Delfino demonstrates how to use a certificate to request an access token to Azure Active Directory, using the OAuth 2.0 client credential flow


You can use the OAuth 2.0 client credentials grant specified in RFC 6749, to access web-hosted resources by using the identity of an application. This type of grant is commonly used for server-to-server interactions that must run in the background, without immediate interaction with a user.

The OAuth 2.0 client credentials grant flow permits a web service (confidential client) to use its own credentials, instead of impersonating a user, to authenticate when calling another web service. For a higher level of assurance, the Microsoft Identity Platform also allows the calling service to authenticate using a certificate or federated credential instead of a shared secret.

In this walk-through I show how to use a certificate to request an access token to Azure Active Directory, using the OAuth 2.0 client credential flow. As the client, I use a custom c# DotNet 6 application and MSAL Library.

Continue with the complete walk-through on Nicola’s blog here.

Category
.NET

Author

Developer Support
Cloud Solution Architects

Microsoft Developer Support helps software developers rapidly build and deploy quality applications for Microsoft platforms.

1 comment

Discussion is closed. Login to edit/delete existing comments.