question

Subramanyamk-9132 avatar image
0 Votes"
Subramanyamk-9132 asked azure-cxp-api edited

Conditional Access Link under Security section of Enterprise Application

Hi,

This is regarding the Displaying of Conditional Access Link under Security section of Enterprise Application.

When create the application manually we are able to see the conditional access link under Security section.
But the same type of application when created using Automation. This link is not getting displayed.

Will there is any differences in Applications created manually and automation process.

Thanks
Subbu32195-conditionalaccess.jpg


azure-active-directoryazure-automation
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

amanpreetsingh-msft avatar image
0 Votes"
amanpreetsingh-msft answered Subramanyamk-9132 commented

Hello @Subramanyamk-9132 · Not sure how are you creating the application using Automation but if you use below method, you will get Conditional Access option available under the Security section.

Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Its not an Enterprise application .

We are creating an Azure AD application using the command "New-AzureADApplication".

After application got created we are navigating to Enterprise Application page by clicking the link in "Managed application in local directory"

0 Votes 0 ·
amanpreetsingh-msft avatar image
0 Votes"
amanpreetsingh-msft answered amanpreetsingh-msft commented

Hello @Subramanyamk-9132 · The object that you see after navigating to Enterprise Application page by clicking the link in "Managed application in local directory" is the service principal corresponding to the application. When it is created via PowerShell, a tag named "WindowsAzureActiveDirectoryIntegratedApp" is not added to it, which is required for Conditional Access option. When it is created via Portal, this tag gets added automatically.

You need to navigate to Enterprise Application page, copy the App ID, Object ID and Display Name of the service principal and run below command to add "WindowsAzureActiveDirectoryIntegratedApp" tag.

Set-AzureADServicePrincipal -AccountEnabled $true -AppId your_app_id -ObjectId your_object_id -AppRoleAssignmentRequired $true -DisplayName your_display_name -Tags {WindowsAzureActiveDirectoryIntegratedApp}

Once you add this tag you will be able to see the Conditional Access option.


Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hi @Subramanyamk-9132 · Have you had a chance to test this out. Feel free to tag me in your reply if you have any further question. If the solution worked, kindly contribute back to the community by Accepting the answer.

0 Votes 0 ·