Get-EntraBetaPasswordSingleSignOnCredential
Gets the password Single-Sign-On (SSO) credentials.
Syntax
Get-EntraBetaPasswordSingleSignOnCredential
-ServicePrincipalId <String>
-PasswordSSOObjectId <PasswordSSOObjectId>
[<CommonParameters>] Description
This cmdlet enables users to read their Password Single-Sign-On credentials for an application that they're part of. Specify ServicePrincipalId and PasswordSSOCredential parameters for retrieve SSO credentials.
Admin could read the group credentials as well.
Note that the password field is hidden for security purpose.
Examples
Example 1: Get password single-sign-on credentials
Connect-Entra -Scopes 'Application.ReadWrite.All', 'Directory.ReadWrite.All'
$servicePrincipal = Get-EntraBetaservicePrincipal -SearchString '<service-principal-name>'
Get-EntraBetaPasswordSingleSignOnCredential -ServicePrincipalId $servicePrincipal.Id -PasswordSSOObjectId 'bbbbbbbb-1111-2222-3333-cccccccccccc'
Id
--
cccccccc-2222-3333-4444-ddddddddddddThis example returns a password SSO credential for the given ServicePrincipalId and PasswordSSOObjectId.
PasswordSSOObjectIdparameter specifies the ID of the user or group this credential set belongs to.ServicePrincipalIdparameter specifies the ID of a service principal. You can useGet-EntraBetaservicePrincipalcmdlet to get service principal object ID.
Parameters
-PasswordSSOObjectId
The ID of the user or group this credential set belongs to.
| Type: | System.PasswordSSOObjectId |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | True |
| Accept wildcard characters: | False |
-ServicePrincipalId
The unique identifier of the object specific Microsoft Entra ID object.
| Type: | System.String |
| Aliases: | ObjectId |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | True |
| Accept wildcard characters: | False |
Outputs
Microsoft.Online.Administration.PasswordSSOCredentials