![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(307.2, 46%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAS%3C/text%3E%3C/svg%3E)
Microsoft Security | Microsoft Entra | Microsoft Entra ID
A cloud-based identity and access management service for securing user authentication and resource access
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(188.79999999999998, 26%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGA%3C/text%3E%3C/svg%3E)
Hi @yeooandyni
Thank you for posting this in Microsoft Q&A.
I understand that you are looking for assistance with automating the migration of SWA apps from Okta to Azure.
First, is it possible to have the sign-in fields detected via PowerShell, perhaps using MgGraph? We have used MgGraph to create the application, set as password-based and enter the Sign-on URL, but still need to manually kick off the field detection. We don't really want to have to do this for 1600+ apps.
Unfortunately, it is not possible to detect the sign-in fields via PowerShell or MgGraph. The sign-in fields detection is a manual process that needs to be done through the portal.
Second, is it possible to assign a user/group to the application and have the credentials entered as part of the assignment, again using PowerShell? Again, we are able to assign the users/group to the Enterprise app but haven't been able to figure out the credentials piece yet.
I understand when you assign a user or group to an application in Entra ID using PowerShell, you provide the admin credentials that are used to authenticate the PowerShell session and perform the assignment.
To perform a truly silent SSO authentication request using The AZ PowerShell module you can pass your UPN as the AccountID parameter while using the Connect-AzAccount command.
Connect-AzAccount -AccountID 'UPN'
Regarding the white blank window, it should take less than a second, but it will be always noticeable since opening a web browser is part of the interactive login process.
To Manage users and groups assignment to an application: https://learn.microsoft.com/en-us/entra/identity/enterprise-apps/assign-user-or-group-access-portal?pivots=aad-powershell
Please do correct me if this is not the case by responding in the comments section.
Hope this helps. Do let us know if you any further queries.
Thanks,
Navya.
If this answers your query, do click Accept Answer and Yes for was this answer helpful. And, if you have any further query do let us know.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(67.2, 94%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EI%3C/text%3E%3C/svg%3E)