How to customize claims issued in the JSON web token (JWT) for enterprise applications.

WGevaert 0 Reputation points
2023-03-24T13:06:59.2666667+00:00

Hello,

I am trying to follow this guide to add a custom claim to the Azure AD OIDC JWT token.

I know it can be done via powershell ClaimsMappings, but I would like to do it via the Azure UI as described by that guide.†

When following these steps, I see the following:

Missing section 2 on enterprise interface.

However, the guide says I should see the following:

There is a section 2 on enterprise interface.

I noticed there is a (preview) on the page, so I tried looking at adding preview features but that list did not show anything that seemed relevant.

How can I do this? (Should I update AD somehow?)

†In particular, I am trying to guide other people (who have the actual application for which we want to change the settings) through this process. This would be much easier & less error-prone when it could be done through the UI, so I would be very happy if it is possible withouth setting claims mappings via the powershell.

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
21,449 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Shweta Mathur 29,741 Reputation points Microsoft Employee
    2023-03-27T11:06:52.3+00:00

    Hi @WGevaert ,

    Thanks for reaching out.

    As your first screenshot mentioned, to configure the application properties, you would require

    Global Administrator

    Application Administrator

    Cloud Application Administrator

    or Owner of the application object permissions.

    If you access the enterprise applications from any of the above permissions, then you will get an option to 'edit' the attributes and claims.

    Hope this will help.

    Thanks,

    Shweta

    Please remember to "Accept Answer" if answer helped you.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.