How to grant third party access to Azure apps
HannaH021
1
Reputation point
Hi
I've been searching for a while, and I know I can't be the only one trying to do this. I need to come up with a pattern for granting third party access to APIs exposed using Azure API mgmt.
The scenarios are
- We are Tenant A, and we have a client on Tenant B. Our APIs in Tenant A have an app registration that is advertised as multitenant. What should happen on Tenant B? I've seen few posts saying create the client in Tenant A and give the credentials to the third party, but this is a problem, because (1) we can't hold the third party accountable when we know the credentials, they can deny any wrong doing, and (2) we have to manage the credentials and rotate them to remain compliant with our password policy. We want to be able to create the app registration in Tenant B, and let them manage their own credentials but still have access to our APIs. Is there a step by step to do this in Azure documentations?
- We have Tenant A, and a customer that uses OKTA for IDP not Azure AD. How do we go about granting them access to our APIs?
Thanks
Sign in to answer