How to restrict the access to the app through Azure SSO?

Manzhelii, Elmira 1 Reputation point
2022-04-13T07:18:33.347+00:00

Hello, i'm a representative of the IT company that is currently working on the development of a feature that allows users to access our application through Azure SSO. We need to allow access not for all users but only for users whose email addresses are added to appropriate list in the Microsoft application. Please help me to find out how i can set it up working this way?

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,180 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Shweta Mathur 28,926 Reputation points Microsoft Employee
    2022-04-13T08:41:54.333+00:00

    Hi @Manzhelii, Elmira ,

    Thanks for reaching out.

    I understand you are looking to restrict the users to access the application which is by default enabled for all the users in the tenant.

    You can restrict the user completely to not grant access to the application in Azure AD by checking the "Assignment required" box in your Enterprise application.

    You would require either of these, Global administrator, Application administrator, or Cloud application administrator roles to manage the application.

    Go to Azure Active Directory -> Enterprise Applications > All applications and select the application you want to configure.

    Select Properties and set "Yes" in User Assignment Required field and save the changes.

    192520-image1.png

    Also, make sure to assign users and groups which need to grant access to the application.

    Under Manage, select the Users and groups > Add user/group.

    Select the users or groups you want to allow and assign them access to your application. Confirm that the users and groups you added are showing up in the updated Users and groups list.

    192656-image.png

    Now only the above assigned users or group members are allowed to access the application.

    Hope this will help.

    ------------------------------------------

    Please remember to "Accept Answer" if answer helped you.

    3 people found this answer helpful.
    0 comments No comments