Azure AD signing option and certificate are greyed out

Sushmita U Damle 1 Reputation point
2022-11-16T16:34:32.353+00:00

Azure AD signing option and certificate are greyed out. Is this an authorization issue?

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,426 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Marilee Turscak-MSFT 33,801 Reputation points Microsoft Employee
    2022-11-17T00:37:07.387+00:00

    Hi @Sushmita U Damle ,

    I understand that your Signing Option and certificate are greyed out. This is likely a permissions issue since the documentation specifies that only a Global Administrator, Privileged Role Administrator, Cloud Application Administrator, or Application Administrator role can manage those properties. https://learn.microsoft.com/en-us/azure/active-directory/manage-apps/tutorial-manage-certificates-for-federated-single-sign-on#prerequisites

    As stated in the documentation, you must also meet the following prerequisites:

    An Azure account with an active subscription. If you don't already have one, Create an account for free.

    One of the following roles: Global Administrator, Privileged Role Administrator, Cloud Application Administrator, or Application Administrator.

    An enterprise application that has been configured in your Azure AD tenant.

    An application owner alone cannot change the Signing Option because there is a separate policy object for SAML configurations. All owners are not necessarily assigned as the policy owners for SAML claims mapping policies.

    Let me know if you have further questions or still face this probably after verifying the prerequisites.

    -

    If the information helped you, please Accept the answer. This will help us and other community members as well.

    0 comments