Azure Active Directory Labs Series – Graph API

Back in June I had the pleasure of delivering a training on Azure Active Directory to two customer crowds.  I say pleasure because not only do I love to share knowledge but also, the preparation of the training forces me to go deep on some aspects of what I’m going to teach.

In that training there were 8 labs and I thought it would be great to share them to the more general public.  The labs follow each other and build on each other.

You can find the exhaustive list in Cloud Identity & Azure Active Directory page.  This is the seventh lab.

In the current lab we will explore the Microsoft Graph API, which is a superset of the Azure AD Graph API, including Office 365 entities.

Log in

  1. Open an in private browser session
  2. Go to
  3. Sign in with SyncAdmin full name, e.g.
    That account is Global admin on the tenant and can therefore see more things than a simple user


  1. Next to the “GET” verb type
  2. Type Enter
  3. You should get a JSON / OData payload describing the user
  4. Type
  5. You should get all the user in the tenant
  6. Scroll to Alan Scott user
  7. With your mouse, click its ID
  8. This should open the link<UID of the user>
  9. Append /memberof to that link
  10. You should see the groups Alan Scott is in

Post Lab

Open and try different queries.

Leave a comment