Hub
NodeNode / Source

Microsoft Authenticator (Deprecated)

IOConnectors

This node has been deprecated and its use is not recommended. Please search for updated nodes instead.

Like

This node provides authentication to access Microsoft Azure and Office 365 cloud services.

It supports these authentication modes:

  • Interactive authentication : Performs an interactive user login in your web browser, when you click on Login . In the browser window that pops up, you may be asked to consent to the requested level of access The login results in a token being stored in a configurable location. The token will be valid for a certain amount of time that is defined by your Azure AD settings. Technically, the login uses the OAuth 2.0 authorization code flow .
  • Username/password authentication : Performs a non-interactive user login to obtain a fresh token every time the node executes. Since this login is non-interactive and you get a fresh token every time, this mode is well-suited for workflows on KNIME Server/ Hub. However, it also has some limitations: First, you cannot to consent to the requested level of access, hence consent must be given beforehand, e.g. during a previous interactive login, or by an Azure AD directory admin. Second, accounts that require multi-factor authentication (MFA) will not work. Technically, the login uses the OAuth 2.0 Resource Owner Password Credentials flow .
  • Client/Application secret authentication : Performs a non-interactive application login to obtain a fresh token every time the node executes. Since this login is non-interactive and you get a fresh token every time, this mode is well-suited for workflows on KNIME Server/ Hub. Please note however, that Microsoft Azure/Office 365 cloud services are accessed on behalf of the application, not on behalf of a user (see here). Technically, the login uses the OAuth 2.0 client credentials flow .
  • Shared key authentication (Azure Storage only) : Specific to Azure Blob Storage and Azure Data Lake Storage Gen2 . Performs authentication using an Azure storage account and its secret key.
  • Shared access signature (SAS) authentication (Azure Storage only) : Specific to Azure Blob Storage and Azure Data Lake Storage Gen2 . Performs authentication using shared access signature (SAS). For more details on shared access signatures see the Azure storage documentation.

Node details

Output ports
  1. Type: Microsoft Credential
    Microsoft Office 365 Credential
    A Microsoft Office 365 credential that uses the logged in Microsoft identity.
File System Connection (Dynamic Inport)
A file system connection to read/write the token, when using File as token storage.
  1. Type: File System

Extension

The Microsoft Authenticator (Deprecated) node is part of this extension:

Related workflows & nodes