Site Logo Image Maintenance Scripts

A repository of PowerShell Scripts to automate a variety of IT related maintenance tasks.

© 2025. All rights reserved.

Connect-toAzureSubscription.ps1

19 Sep 2025

Description

Purpose

Connects to Azure using a service principal and returns connection details.

Detailed Description

The Connect-toAzureSubscription function connects to Azure using a service principal. It requires the tenant ID, subscription ID, client ID, and client secret. The function returns a custom object with details about the connection.

Back to Top

Usage

Example 1

$ClientID = "Client-ID-Here"

$tenantID = “Tenant-ID-Here” $ClientSecret = ConvertTo-SecureString -String “Client-Secret-Here” -AsPlainText -Force $SubscriptionID = “Subscription-ID-Here” $connectionInfo = Connect-toAzureSubscription -TenantId $tenantID -SubscriptionId $SubscriptionID -ClientId $ClientID -ClientSecret $ClientSecret if ($connectionInfo.Connected) { Write-Host “Connected to Azure with ClientId: $($connectionInfo.ClientId)” } else { Write-Host “Failed to connect to Azure” }

Back to Top

Notes

No additional notes.

Back to Top

Script

<#

.SYNOPSIS
Connects to Azure using a service principal and returns connection details.

.DESCRIPTION
The Connect-toAzureSubscription function connects to Azure using a service principal. It requires the tenant ID, subscription ID, client ID, and client secret. The function returns a custom object with details about the connection.

.PARAMETER TenantId
The ID of the Azure tenant.

.PARAMETER SubscriptionId
The ID of the Azure subscription.

.PARAMETER ClientId
The ID of the Azure client.

.PARAMETER ClientSecret
The client secret, as a SecureString.

.PARAMETER LogFile
The path to a file where the function will log the connection status. This parameter is optional.

.EXAMPLE
$ClientID = "Client-ID-Here"
$tenantID = "Tenant-ID-Here"
$ClientSecret = ConvertTo-SecureString -String "Client-Secret-Here" -AsPlainText -Force
$SubscriptionID = "Subscription-ID-Here"

$connectionInfo = Connect-toAzureSubscription -TenantId $tenantID -SubscriptionId $SubscriptionID -ClientId $ClientID -ClientSecret $ClientSecret

if ($connectionInfo.Connected) {
    Write-Host "Connected to Azure with ClientId: $($connectionInfo.ClientId)"
} else {
    Write-Host "Failed to connect to Azure"
}

#>

function Connect-toAzureSubscription {
    [CmdletBinding(SupportsShouldProcess = $true)]
    param (
        [Parameter(Mandatory = $true, HelpMessage = "Enter the Azure tenant ID.")]
        [ValidateNotNullOrEmpty()]
        [ValidateScript({
                if ($_ -match '^[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}$') { $true } else { throw "Invalid TenantId format. It should be a GUID." }
            })]
        [string]
        $TenantId,

        [Parameter(Mandatory = $true, HelpMessage = "Enter the Azure subscription ID.")]
        [ValidateNotNullOrEmpty()]
        [ValidateScript({
                if ($_ -match '^[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}$') { $true } else { throw "Invalid SubscriptionId format. It should be a GUID." }
            })]
        [string]
        $SubscriptionId,

        [Parameter(Mandatory = $true, HelpMessage = "Enter the Azure client ID.")]
        [ValidateNotNullOrEmpty()]
        [ValidateScript({
                if ($_ -match '^[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}$') { $true } else { throw "Invalid ClientId format. It should be a GUID." }
            })]
        [string]
        $ClientId,

        [Parameter(Mandatory = $true, HelpMessage = "Enter the Azure client secret as a SecureString.")]
        [ValidateNotNullOrEmpty()]
        [System.Security.SecureString]
        $ClientSecret,

        # New parameter for logging
        [Parameter(Mandatory = $false)]
        [string]
        $LogFile
    )

    $InformationPreference = "Continue"
    $connected = $false
    
    if ($PSCmdlet.ShouldProcess("Connecting to Azure with Subscription: $SubscriptionId")) {
        try {
            Disable-AzContextAutosave -Scope Process | Out-Null
    
            $creds = [System.Management.Automation.PSCredential]::new($ClientId, $ClientSecret)
            $connection = Connect-AzAccount -Tenant $TenantId -Subscription $SubscriptionId -Credential $creds -ServicePrincipal
    
            if ($null -eq $connection.Account) {
                throw "Failed to connect to Azure with Subscription: $SubscriptionId"
            }
    
            # New logging code
            if ($LogFile) {
                Write-Information "Connected to Azure..." | Out-File -Append -FilePath $LogFile
            }
            else {
                Write-Information "Connected to Azure..."
            }
    
            $connected = $true
        }
        catch {
            Write-Error "Failed to connect to Azure: $_"
        }
    }
    
    # New output code
    return @{
        Connected      = $connected
        TenantId       = $TenantId
        SubscriptionId = $SubscriptionId
        ClientId       = $ClientId
    }
}

Back to Top

Download

Please feel free to copy parts of the script or if you would like to download the entire script, simply click the download button. You can download the complete repository in a zip file by clicking the Download link in the menu bar on the left hand side of the page.

Report Issues

You can report an issue or contribute to this site on GitHub. Simply click the button below and add any relevant notes. I will attempt to respond to all issues as soon as possible.

Issue

Back to Top