Using oAuth with Azure AD causes user account logins to keep resetting to email addresses. Is there a way to stop that and still use oAuth?

paydenkp · March 4, 2019, 3:51pm

For example, I go into Users as a Server Admin, and there’s a column for Login.

I understand why this would be the email, but at the same time, since oAuth’s login is the email, I don’t see why the Login would keep switching back.

I want the logs showing who edited what to show their name rather than their email, but because this happens, only their email shows up.

This may be the intended effect, but is there some way to either stop the resetting of Logins or use something else for logging of changes?

jangaraj · March 4, 2019, 5:47pm

It doesn’t make sense to keep user name/surname in logs, because they may not be a unique. But login ID (email in your case) is better, because it is unique usually.

Collect and process logs on your own. You can translate login ID to name&surname with graph API in your own processing. E.g.

https://graph.microsoft.com/v1.0/users/?$filter=mailNickname eq '<USER_LOGIN_ID>'

Or you can use Grafana API /api/users.

Topic		Replies	Views
Grafana Re-Creates Users Authentication	1	278	September 6, 2021
Logging user email from AAD in console logs Authentication azure	1	265	October 18, 2023
Users removed from Org after new login Grafana	1	361	April 26, 2022
How to configure Grafana&Keycloak so that grafana can use Keycloak's username instead of email as Grafana's login name? Grafana	3	3067	June 6, 2022
User Org permissions gone after logoff / logon (Azure Oauth2) Grafana azure	1	600	October 26, 2021

Using oAuth with Azure AD causes user account logins to keep resetting to email addresses. Is there a way to stop that and still use oAuth?

Related topics