question

AdrianDobrean-6689 avatar image
0 Votes"
AdrianDobrean-6689 asked MarileeTurscak-MSFT answered

Accounts in any Azure AD directory and personal Microsoft accounts authorization

I have managed to register an Azure AD application setup to allow any Microsoft accounts and my application successfully used OAuth to allow Microsoft users to authenticate, so far so good.
Now I would like to restrict the users who are allowed to login into my application, e.g. by providing a list of Microsoft accounts like foo@gmail.com, blah@microsoft.com ...

So far I was able to restrict it to an organization or a list of organizations, i.e. single and multi tenant respectively. However I would like to be able to do the same thing for personal users too.
Is there such a way?

azure-ad-authentication
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

MarileeTurscak-MSFT avatar image
0 Votes"
MarileeTurscak-MSFT answered

Hi @AdrianDobrean-6689,

Just to clarify - is your goal just to provide a list of users with access to the app? If so, you can restrict your Azure AD app to a set of users in an Azure AD tenant. You need to update the app to enable user assignment via either the Enterprise Applications page or the App Registrations page. https://docs.microsoft.com/en-us/azure/active-directory/develop/howto-restrict-your-app-to-a-set-of-users

Then you will be able to assign users and groups to the app.




5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.