Connecting to foreign Intune tenants with Microsoft Graph and PowerShell

If you manage multiple Intune tenants with your Azure AD account (invited as guest in the foreign tenant) we need a way to specify the tenant id we want to connect. Otherwise you will land in your home-tenant every time. This posts shows you how to accomplish that with the Intune PowerShell SDK.

If we have a look at the default Graph settings in a PowerShell session with the Intune PowerShell SDK you will notice that all authentication requests will land on the /common endpoint.


AuthUrl          :
ResourceId       :
GraphBaseAddress :
AppId            : d1ddf0e4-d672-4dae-b554-9d5bdfd93547
RedirectLink     : urn:ietf:wg:oauth:2.0:oob
SchemaVersion    : v1.0

To connect to a specific tenant we need to update the AuthUrl to contain the tenant id or any registered domain name of the target tenant before connecting:

Update-MSGraphEnvironment -AuthUrl

Afterewards you can connect to Microsoft Graph as usual:


Happy Microsoft Graph-ing with multiple tenants.