Skip to main content

Finding the object ID for your Entra OIDC application

Learn how to find the object ID associated with your Enterprise Managed Users OIDC app.

Who can use this feature?

Enterprise Managed Users is available for new enterprise accounts on GitHub Enterprise Cloud. See "About Enterprise Managed Users."

You can adjust the lifetime of a session, and how often a managed user account needs to reauthenticate with your IdP, by changing the lifetime policy property of the ID tokens issued for GitHub from your IdP. The default lifetime is one hour.

You will need the object ID associated with your Enterprise Managed Users OIDC app to complete these steps. You can find this ID in the Microsoft Entra ID admin center or by using the Microsoft Graph Explorer.

Once you have your object ID, you must use the Microsoft Graph API to configure and assign a lifetime policy to that ID token. See "Configure token lifetime policies" in the Microsoft documentation.

For help completing these steps or configuring the OIDC session lifetime for your IdP, contact Microsoft Support.

Using Microsoft Entra ID admin center to find your object ID

You can use the Microsoft Entra ID admin center UI to view the object ID associated with your Enterprise Managed Users OIDC app.

  1. Log in to the Microsoft Entra ID admin center.
  2. In the left sidebar under "Applications", click Enterprise applications.
  3. Search for the GitHub Enterprise Managed User (OIDC) app. The application ID will be 12f6db80-0741-4a7e-b9c5-b85d737b3a31.
  4. Copy the Object ID value.

Using Microsoft Graph Explorer to find your object ID

You can use the Microsoft Graph Explorer to view the object ID associated with your Enterprise Managed Users OIDC app.

  1. Log in to the Microsoft Graph Explorer tenant that has your OIDC app.

  2. To view the object ID (id in Microsoft Graph) for your Enterprise Managed Users OIDC app, run the following query.

    Request Method: GET

    URL: https://graph.microsoft.com/v1.0/servicePrincipals?$filter=appId eq '12f6db80-0741-4a7e-b9c5-b85d737b3a31'&$select=id,appId,appDisplayName

    Example response:

 {
  "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#servicePrincipals(id,appId,appDisplayName)",
  "value": [
      {
          "id": "c8162c97-32ff-406d-85d3-cc372e3e8384",
          "appId": "12f6db80-0741-4a7e-b9c5-b85d737b3a31",
          "appDisplayName": "GitHub Enterprise Managed User (OIDC)"
      }
  ]
 }