Share via

Allow known users to log in to my web app (SPA) with Entra Id

Joakim 0 Reputation points
Jan 29, 2025, 3:10 PM

We have a web application (SPA) where users log in with mail address and password.

A particular customer is using Entra Id for the organisation's users.

Most of their users are known in our application thru matching email addresses.

I'd like to offer those users to log in using Entra Id and Single Sign-on.

In Microsoft Entra Admin Center, we've created a tenant and added our application.

We’ve changed our app to accept login with MSAL.

The login works fine, but only with the two users we've added manually.

Is there any way to accept all users?

In principle any user with valid id from Microsoft is ok for now.

We have set up the application with ‘Accounts in any organizational directory (Any Microsoft Entra ID tenant - Multitenant) and personal Microsoft accounts (e.g. Skype, Xbox)’

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
23,349 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Akhilesh Vallamkonda 12,100 Reputation points Microsoft Vendor
    Jan 30, 2025, 9:57 PM

    Hi @Joakim

    Thank you for reaching Microsoft!

    If I understand correctly, you are trying to configure an application which accept known account from Microsoft. May I know what you mean by valid Microsoft account and can you describe "Is there any way to accept all users"
    As you mentioned you choose the Supported account types as "Accounts in any organizational directory (Any Microsoft Entra ID tenant - Multitenant) and personal Microsoft accounts (e.g. Skype, Xbox)" by selecting this option you are allowing a wide range of users to access your application with Work or School Accounts any users with a work or school account from any Microsoft Entra (formerly Azure AD) tenant can sign in.
    Personal Microsoft Accounts any users with personal Microsoft accounts, such as those used for Skype, Xbox, or Outlook.com, can also sign in

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.