Converting a Single Tenant App to Multi-Tenant

Rishabh Srivastava 60 Reputation points Microsoft Employee
2023-10-30T02:53:56.2+00:00

What are the steps required to convert a single tenant app to a multi-tenant app? Specifically, what updates do we need to make to the access token and claims to support multi-tenancy? It would be helpful to see examples of what a multi-tenant app access token should look like and the specific claims that need to be included.

Additionally, can you recommend which API we should use to convert our single-tenant app to multi-tenant? We have reviewed this guide: https://learn.microsoft.com/en-us/azure/active-directory/develop/howto-convert-app-to-be-multi-tenant, but we need more clarity on how to optimize our current access token and which API to use.

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,062 questions
0 comments No comments
{count} votes

Accepted answer
  1. 2023-10-30T03:47:31.9266667+00:00

    Hello @Rishabh Srivastava , converting an single tenant Entra app registration to multi-tenant requires changes in its app manifest. More specifically, chaging the signInAudience from AzureADMyOrg to any other available, and accessTokenAcceptedVersion to 2 if signInAudience is AzureADandPersonalMicrosoftAccount. Access tokens are pretty much the same, no inmmediate optization is required. However, special considerations apply for multi-tenant applications that are detailed in the refered link and also here.

    Let us know if you need additional assistance. If the answer was helpful, please accept it and rate it so that others facing a similar issue can easily find a solution.

    1 person found this answer helpful.

0 additional answers

Sort by: Most helpful