Share via

how to enable editing of the attribute and claims as it is greyed out for me

Manju Dharani 0 Reputation points
2023-04-21T12:53:02.8566667+00:00

unable to edit the attributead claims

Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
975 questions
Microsoft Security | Microsoft Entra | Microsoft Entra ID

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Shweta Mathur 30,296 Reputation points Microsoft Employee Moderator
    2023-04-26T08:17:57.85+00:00

    Hi @Manju Dharani ,

    Thanks for reaching out.

    I understand you are trying to add new attributes and claims to your application, but the option is greyed out.

    This is because there are claims defined using claim mapping policy through Graph or PowerShell. You need to remove any claim mapping policy from your applications to define new claims and attributes here.

    You can check any existing claim mapping policy defined in your application using PowerShell commands.

    Connect-AzureAD
Get-AzureADServicePrincipalPolicy -Id "<objectIdofServicePrincipal>" which will provide the claim mapping policy associated with this application along with the policy id.

    User's image

    You can remove claim mapping policy using

    Remove-AzureADServicePrincipalPolicy -Id "<objectIdofServicePrincipal>" -PolicyId 79388d04-0bcc-457e-af22-6421bb4fbd66

    Once the claim mapping policy has been removed from the application, you will get an option to add new claims.

    Hope this will help.

    Thanks,

    Shweta

    Please remember to "Accept Answer" if answer helped you.

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.