It’s been a while since I’ve updated my blog so here we go!

This is a step-instruction guide on how to generate Azure AD reports listing all users’ last logon time. This is particularly handy as is not possible to generate any such report using AzureAD or AzureADPreview PowerShell modules.

Prerequisites

• Azure Active Directory
• Web browser
• Microsoft Graph API delegate permissions
  • User.Read.All
  • Directory.Read.All
  • Directory.AccessAsUser.All

Instructions

1. Launch your web browser and navigate to https://developer.microsoft.com/en-us/graph/graph-explorer.
2. Click Sign in to Graph Explorer and login using your Azure AD tenant credentials.

3. Once you have successfully signed in, run the following query https://graph.microsoft.com/beta/users?$top=999&$select=displayName,userPrincipalName,signInActivity.

4. When successful, our output will be produced in JSON format within the bottom pane, response preview tab per below.

5. Select all (CTRL + A) within the bottom response preview tab and copy (CTRL + C).
6. Go to https://json-csv.com/ and convert your JSON output to CSV.
7. Open your CSV file using Microsoft Excel, filter and sort last login column from A-Z (which also sorts out in date order).

8. Congratulations! You have successfully generated an Azure AD report detailing last logon timestamps for your organisation using Microsoft Graph API.