Share via

Azure VPN - Migrate Service Principals from the retiring Azure AD Graph APIs to Microsoft Graph

Jarvis 20 Reputation points
2025-01-07T16:24:43.36+00:00

We also got the notification to migrate to Microsoft Graph API but having a hard time figuring out where to make the changes for Azure VPN?

CleanShot 2025-01-07 at 10.22.38

Microsoft Graph
Microsoft Graph
A Microsoft programmability model that exposes REST APIs and client libraries to access data on Microsoft 365 services.
12,721 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
22,755 questions
Accepted answer
  1. Raja Pothuraju 10,600 Reputation points Microsoft Vendor
    2025-01-07T18:08:42.5566667+00:00

    Hello @Jarvis,

    Thank you for posting your query on Microsoft Q&A.

    You can safely disregard this alert if the application in question is a first-party application. For more details, you can refer to the thread linked below. I can confirm that Azure VPN is indeed a first-party application managed by Microsoft.

    https://learn.microsoft.com/en-us/answers/questions/2127132/finding-service-principals-impacted-by-azure-ad-gr

    Additionally, you can find a list of first-party service principals in the following documentation:

    https://github.com/merill/microsoft-info/blob/main/_info/MicrosoftApps.csv

    I hope this information is helpful. Please feel free to reach out if you have any further questions.

    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

    Thanks,
    Raja Pothuraju.

1 additional answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Akhil Nasalwai - MSFT 85 Reputation points Microsoft Vendor
    2025-01-07T17:11:24.1733333+00:00

    Hello Jarvis,

    Thank you for contacting Microsoft Support!

    Azure Active Directory (Azure AD) Graph is deprecated and is currently in its retirement path. It is recommended that you migrate your apps to Microsoft Graph if you have AD Graphs.

    If you are finding "Microsoft Office" application (ID of d3590ed6-52b3-4102-aeff-aad2292ab01c), you can safely ignore that.

    For the rest, please read our recently updated Blog Post in this regard:

    https://techcommunity.microsoft.com/blog/identity/action-required-azure-ad-graph-api-retirement/4090533

    Also, to continue to use Azure AD Graph Apps until they are switched over to Microsoft Graph

    Manage application authenticationBehaviors - Microsoft Graph | Microsoft Learn

    Hope this helps.

    If the answer is helpful, please click Accept Answer and kindly upvote it. If you have any further questions about this answer, please click Comment.

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.