Share via

How I can configure SSO+Provisioning application without publishing into Entra ID gallery

bartek1234 20 Reputation points
2024-09-19T09:38:07.2066667+00:00

Hi,

My purpose is clear - I want to configure the application SSO + (User) Provisioning.

For this application, the provisioning is on start disabled (https://learn.microsoft.com/en-us/entra/identity/app-provisioning/known-issues?pivots=app-provisioning#service-issues)

Automatic provisioning isn't available on my OIDC-based application If you create an app registration, the corresponding service principal in enterprise apps won't be enabled for automatic user provisioning. You'll need to either request the app be added to the gallery, if intended for use by multiple organizations, or create a second non-gallery app for provisioning.

Based on the note, I decided to publish this application in the EntraID gallery, but I still receive the same error as here: https://learn.microsoft.com/en-us/answers/questions/1858325/access-request-to-microsoft-application-network-po

  • Following the note on the site I don't know what I should do.

Currently we are not onboarding new applications in FY25 due to SFI (Security Future Initiatives). Only the update listing requests can be submitted.

In this case, it's possible to configure the application SSO + (User) Provisioning?

Microsoft Security Microsoft Entra Microsoft Entra ID
Accepted answer
  1. Navya 19,795 Reputation points Microsoft External Staff Moderator
    2024-09-20T03:42:22.8866667+00:00

    Hi @bartek1234

    Thank you for posting this in Microsoft Q&A.

    I understand that you want to configure the application Single sign-on (SSO) and User Provisioning.

    The error message indicates that automatic provisioning is not available for OIDC-based applications. To enable provisioning, you must either publish the application or create a non-gallery application.

    Yes, it's possible to configure the application SSO and User Provisioning without publishing application in the Entra Gallery.

    Create an Enterprise application in your tenant. Follow the below steps

    1. Sign in to the Microsoft Entra admin center as at least a Cloud Application Administrator.
    2. Browse to Identity > Applications > Enterprise applications > All applications.
    3. Select New application > Create your own application > Select Integrate any other application you don't find in the gallery (non-gallery) option > Create
    4. You can be able to configure SSO and Provisioning.

    User's image

    Hope this helps. Do let us know if you any further queries.

    Thanks,

    Navya.

    If this answers your query, do click Accept Answer and Yes for was this answer helpful. And, if you have any further query do let us know.

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.