How to grant third party access to Azure apps

HannaH021 1 Reputation point
2021-04-28T09:47:18.327+00:00

Hi

I've been searching for a while, and I know I can't be the only one trying to do this. I need to come up with a pattern for granting third party access to APIs exposed using Azure API mgmt.
The scenarios are

  • We are Tenant A, and we have a client on Tenant B. Our APIs in Tenant A have an app registration that is advertised as multitenant. What should happen on Tenant B? I've seen few posts saying create the client in Tenant A and give the credentials to the third party, but this is a problem, because (1) we can't hold the third party accountable when we know the credentials, they can deny any wrong doing, and (2) we have to manage the credentials and rotate them to remain compliant with our password policy. We want to be able to create the app registration in Tenant B, and let them manage their own credentials but still have access to our APIs. Is there a step by step to do this in Azure documentations?
  • We have Tenant A, and a customer that uses OKTA for IDP not Azure AD. How do we go about granting them access to our APIs?

Thanks

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
22,417 questions
{count} votes

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.