@nacx - this worked well. Some thoughts re: ObjectID and KeyVault -- the current tests use the configured service principal and give access to that SP for the generated vault for purposes of the tests. It is possible to grant access to other service principals as well. So access to the GraphRBAC API to resolve the ObjectId for a general SP might be useful.
Also, I've added a patch to extracting out the TenantID since the URL can vary. For instance `https://login.microsoft.com` is another valid OAuth endpoint. -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/jclouds/jclouds-labs/pull/424#issuecomment-348624756
