Why can't user reset their password for some Sign-On URL apps in Myapps.microsoft.com

Strensnik Work 41 Reputation points
2023-10-31T22:21:01.3933333+00:00

For most myapps apps that I set up with a Sign-on URL login, users cannot reset their password. Some of the apps allow users to select "Manage your application", then, under Accounts - Credentials saved, then can select edit and change their password.

However, most apps (also configure for Sign-On URL) do not have an Accounts section and therefore can't edit their password. I compared the setting in the azure portal-Enterprise Applications and I see nothing different between the working ones and the non-working ones. Short of deleting and recreating the app, how can I make the Accounts visible to be edited.

Microsoft 365 and Office | Install, redeem, activate | For business | Windows
Microsoft Security | Intune | Application management
Microsoft Security | Microsoft Entra | Microsoft Entra ID
Microsoft Security | Microsoft Authenticator
Microsoft Security | Microsoft Entra | Other
{count} votes

1 answer

Sort by: Most helpful
  1. Navya 20,100 Reputation points Microsoft External Staff Moderator
    2023-11-01T12:15:33.86+00:00

    Hi @Strensnik Work , thanks for reaching us.

    I understand user is having trouble to resetting passwords for some Sign-On URL apps in Myapps.microsoft.com.

    The reason why can't user reset their password for some Sign-On URL apps in Myapps.microsoft.com is that it depends on the Single sign-on settings configured for the app in Azure Active Directory.

    If the app is configured as Password based sign-on, then users will be able to edit their passwords directly from the app's interface.

    If the app is configured as SAML based sign-on or Linked sign-on, then users will not be able to edit their passwords directly from the app's interface. As the authentication is handled by the identity provider (in this case, Azure AD) and not the application itself. In this case, users would need to reset their password through the identity provider (Azure AD) rather than the application.

    Hopes this helps. Do let us know if you any further queries.

    Thanks,

    Navya.

    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.