Some users which belongs to another teenant are not able to login using our app with SingelSignOn

Fredrik Bålstedt 1 Reputation point
2024-05-21T09:57:43.7666667+00:00

How can another user login using our app using Singel Sign On. When User login then admin need to give permission.

Question: What is needed for admin to give permission to our "app" and how to do that? The app is registered and works for some users but sometimes it ask new user to accept the app login with admin permission. How to approve the app and it stop asking for approvement all the time. Screenshot 2024-05-21 at 17.56.56

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,127 questions
0 comments No comments
{count} votes

2 answers

Sort by: Most helpful
  1. akinbade abiola 4,785 Reputation points
    2024-05-21T10:50:02.4233333+00:00

    Hello Fredrik Bålstedt,

    Thanks for your question.

    Since you have enabled single sign on, I would recommend the following steps:

    Please let me know if you have further questions

    You can mark it 'Accept Answer' if this helped.

    0 comments No comments

  2. Akhilesh 6,270 Reputation points Microsoft Vendor
    2024-05-29T04:21:56.1633333+00:00

    Hi @Fredrik Bålstedt

    Thank you for post!

    To answer your question, in the context of an application, particularly within Microsoft Entra ID, is a process where a privileged administrator grants permission to an application to access specific resources or data on behalf of all users within an organization. This is often required for applications that need to perform actions or access data that are beyond the scope of individual user permissions. To manage admin approval for an app using Single Sign-On (SSO), you typically need to adjust the consent settings within your admin portal.

    If the app is trusted and you want to avoid repeated consent prompts, you can grant tenant-wide admin consent.
    If you prefer not to grant tenant-wide consent, you can adjust the user consent settings to allow users to consent to apps on their own. https://learn.microsoft.com/en-us/microsoft-365/admin/misc/user-consent?view=o365-worldwide

    Hope this helps. Do let us know if you any further queries.

    Thanks,
    Akhilesh.


    If this answers your query, do click Accept Answer and Yes for was this answer helpful. And, if you have any further query do let us know.