Submit a request to publish your application in Azure Active Directory application gallery

You can publish applications you develop in the Azure Active Directory (Azure AD) application gallery, which is a catalog of thousands of apps. When you publish your applications, they're made publicly available for users to add to their tenants. For more information, see Overview of the Azure Active Directory application gallery.

To publish your application in the Azure AD gallery, you need to complete the following tasks:

  • Make sure that you complete the prerequisites.
  • Create and publish documentation.
  • Submit your application.
  • Join the Microsoft partner network.

Prerequisites

To publish your application in the gallery, you must first read and agree to specific terms and conditions.

You can sign up for a free, test Development account. It's free for 90 days and you get all of the premium Azure AD features with it. You can also extend the account if you use it for development work: Join the Microsoft 365 Developer Program.

Create and publish documentation

Provide app documentation for your site

Ease of adoption is an important factor for those that make decisions about enterprise software. Documentation that is clear and easy to follow helps your users adopt technology and it reduces support costs.

Create documentation that includes the following information at minimum:

  • An introduction to your SSO functionality
    • Protocols
    • Version and SKU
    • List of supported identity providers with documentation links
  • Licensing information for your application
  • Role-based access control for configuring SSO
  • SSO Configuration Steps
    • UI configuration elements for SAML with expected values from the provider
    • Service provider information to be passed to identity providers
  • If you use OIDC/OAuth, a list of permissions required for consent, with business justifications
  • Testing steps for pilot users
  • Troubleshooting information, including error codes and messages
  • Support mechanisms for users
  • Details about your SCIM endpoint, including supported resources and attributes

App documentation on the Microsoft site

When your application is added to the gallery, documentation is created that explains the step-by-step process. For an example, see Tutorials for integrating SaaS applications with Azure Active Directory. This documentation is created based on your submission to the gallery. You can easily update the documentation if you make changes to your application by using your GitHub account.

Submit your application

After you've tested that your application works with Azure AD, submit your application request in the Microsoft Application Network portal. The first time you try to sign in to the portal you are presented with one of two screens.

  • If you receive the message "That didn't work", then you need to contact the Azure AD SSO Integration Team. Provide the email account that you want to use for submitting the request. A business email address such as name@yourbusiness.com is preferred. The Azure AD team will add the account in the Microsoft Application Network portal.
  • If you see a "Request Access" page, then fill in the business justification and select Request Access.

After your account is added, you can sign in to the Microsoft Application Network portal and submit the request by selecting the Submit Request (ISV) tile on the home page. If you see the "Your sign-in was blocked" error while logging in, see Troubleshoot sign-in to the Microsoft Application Network portal.

Implementation-specific options

On the application Registration form, select the feature that you want to enable. Select OpenID Connect & OAuth 2.0, SAML 2.0/WS-Fed, or Password SSO(UserName & Password) depending on the feature that your application supports.

If you're implementing a SCIM 2.0 endpoint for user provisioning, select User Provisioning (SCIM 2.0). Download the schema to provide in the onboarding request. For more information, see Export provisioning configuration and roll back to a known good state. The schema that you configured is used when testing the non-gallery application to build the gallery application.

If you wish to register an MDM application in the Azure AD gallery, select Register an MDM app.

You can track application requests by customer name at the Microsoft Application Network portal. For more information, see Application requests by Customers.

Timelines

Listing an SAML 2.0 or WS-Fed application in the gallery takes 7 to 10 business days.

Screenshot that shows the timeline for listing a SAML application.

Listing an OpenID Connect application in the gallery takes 2 to 5 business days.

Screenshot that shows the timeline for listing an OpenID Connect application.

Listing an SCIM provisioning application in the gallery varies, depending on numerous factors.

Not all applications are onboarded. Per the terms and conditions, a decision can be made not to list an application. Onboarding applications is at the sole discretion of the onboarding team.

Here's the flow of customer-requested applications.

Screenshot that shows the customer-requested apps flow.

To escalate issues of any kind, send an email to the Azure AD SSO Integration Team. A response is typically sent as soon as possible.

You can submit your application update request in the Microsoft Application Network portal. The first time you try to sign into the portal you are presented with one of two screens.

  • If you receive the message "That didn't work", then you need to contact the Azure AD SSO Integration Team. Provide the email account that you want to use for submitting the request. A business email address such as name@yourbusiness.com is preferred. The Azure AD team will add the account in the Microsoft Application Network portal.

  • If you see a "Request Access" page, then fill in the business justification and select Request Access.

After the account is added, you can sign in to the Microsoft Application Network portal and submit the request by selecting the Submit Request (ISV) tile on the home page and select Update my application’s listing in the gallery and select one of the following options as per your choice -

  • If you want to update applications SSO feature, select Update my application’s Federated SSO feature.

  • If you want to update Password SSO feature, select Update my application’s Password SSO feature.

  • If you want to upgrade your listing from Password SSO to Federated SSO, select Upgrade my application from Password SSO to Federated SSO.

  • If you want to update MDM listing, select Update my MDM app.

  • If you want to improve User Provisioning feature, select Improve my application’s User Provisioning feature.

  • If you want to remove the application from Azure AD gallery, select Remove my application listing from the gallery.

If you see the Your sign-in was blocked error while logging in, see Troubleshoot sign-in to the Microsoft Application Network portal.

Join the Microsoft partner network

The Microsoft Partner Network provides instant access to exclusive programs, tools, connections, and resources. To join the network and create your go-to-market plan, see Reach commercial customers.

Next steps