Developing Azure App Service REST API: Configuration for Azure AD User Profile Updates

Configure Azure App Service REST API for Azure AD User Profile Updates

Q: You are developing an Azure App Service REST API.The API must be called by an Azure App Service web app.The API must retrieve and update user profile information stored in Azure Active Directory (Azure AD)You need to configure the API to make the updates.Which two tools should you use? Each correct answer presents part of the solution.NOTE: Each correct selection is worth one point.

Microsoft Graph APIAzure API Management

Prev Question Next Question

Question

You are developing an Azure App Service REST API.

The API must be called by an Azure App Service web app.

The API must retrieve and update user profile information stored in Azure Active Directory (Azure AD)

You need to configure the API to make the updates.

Which two tools should you use? Each correct answer presents part of the solution.

NOTE: Each correct selection is worth one point.

Answers

A. Microsoft Graph API

B. Microsoft Authentication Library (MSAL)

C. Azure API Management

D. Microsoft Azure Security Center

E. Microsoft Azure Key Vault SDK.

Show Answer

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D. E.

AC.

A: You can use the Azure AD REST APIs in Microsoft Graph to create unique workflows between Azure AD resources and third-party services.

Enterprise developers use Microsoft Graph to integrate Azure AD identity management and other services to automate administrative workflows, such as employee onboarding (and termination), profile maintenance, license deployment, and more.

C: API Management (APIM) is a way to create consistent and modern API gateways for existing back-end services.

API Management helps organizations publish APIs to external, partner, and internal developers to unlock the potential of their data and services.

https://docs.microsoft.com/en-us/graph/azuread-identity-access-management-concept-overview

To retrieve and update user profile information stored in Azure Active Directory (Azure AD) from an Azure App Service REST API, we need to use the following two tools:

Microsoft Graph API: Microsoft Graph API is a RESTful web API that provides access to data and intelligence across Microsoft 365, Azure Active Directory, and other Microsoft services. It allows developers to access various resources in Azure AD, including users, groups, and other directory objects. By using the Graph API, we can retrieve and update user profile information stored in Azure AD from an Azure App Service REST API.
Microsoft Authentication Library (MSAL): To access the Microsoft Graph API, we need to authenticate the API with Azure AD. MSAL is a library that simplifies the process of acquiring access tokens for Microsoft identities. It provides a simple programming model for developers to build authentication and authorization flows into their applications. We can use MSAL to authenticate the API with Azure AD and get access tokens that can be used to access the Graph API.

Therefore, the correct answers are A. Microsoft Graph API and B. Microsoft Authentication Library (MSAL). We don't need Azure API Management, Microsoft Azure Security Center, or Microsoft Azure Key Vault SDK to retrieve and update user profile information stored in Azure AD from an Azure App Service REST API.

Prev Question Next Question