question

VenkatachalamRohitPartner-1188 avatar image
0 Votes"
VenkatachalamRohitPartner-1188 asked VenkatachalamRohitPartner-1188 commented

Azure Authentication : Allow only user in a group via Azure AD Authentication

Hi,
We have hosted a webapp built in python. We are trying to restrict access to the application via AD groups.
We followed the steps mentioned in the link below.
https://www.c-sharpcorner.com/article/how-to-restrict-users-from-accessing-the-azure-app-service-with-azure-ad-authent/

However all the users in the AD are able to access the application. It looks like as soon as users login, they are being granted access and added to the user list of the enterprise application. What is the way to prevent this and ensure only the users who are part of an AD group can access the application.
I

azure-ad-authenticationazure-ad-conditional-accessazure-webapps-authentication
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

amanpreetsingh-msft avatar image
0 Votes"
amanpreetsingh-msft answered VenkatachalamRohitPartner-1188 commented

Hi @VenkatachalamRohitPartner-1188 • Thank you for reaching out.

You need to make sure that User assignment required? is set to YES under the properties of the enterprise applications. If this option is set to NO, all users in Azure AD can sign in to the Enterprise Application, regardless of whether users are added to the user list of the enterprise application or not. In either case, users won't automatically get assigned to the application.

Once you set User assignment required? to YES, only the users who are added to the user list of the enterprise application can access the application.

Please refer to Manage user assignment for an app in Azure Active Directory, for more details.


Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

· 2
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hi @VenkatachalamRohitPartner-1188 • Just checking if you had a chance to test it out.

0 Votes 0 ·

yeah. thanks. It worked. also had to give admin grants to the enterprise app. By default users cannot request access to the application

0 Votes 0 ·