Add an unlisted (non-gallery) application to your Azure AD organization

In addition to the choices in the Azure AD application gallery, you have the option to add a non-gallery application. You can add any application that already exists in your organization, or any third-party application from a vendor who is not already part of the Azure AD gallery. Depending on your license agreement, the following capabilities are available:

This article describes how to add a non-gallery application to Enterprise Applications in the Azure portal without writing code. If instead you're looking for developer guidance on how to integrate custom apps with Azure AD, see Authentication Scenarios for Azure AD. When you develop an app that uses a modern protocol like OpenId Connect/OAuth to authenticate users, you can register it with the Microsoft identity platform by using the App registrations experience in the Azure portal.

  1. Sign in to the Azure Active Directory portal using your Microsoft identity platform administrator account.

  2. Select Enterprise Applications > New application.

  3. (Optional but recommended) In the Browse Azure AD Gallery search box, enter the display name of the application.

  4. Select Create your own application. The Create your own application page appears.

    Add application

  5. Start typing the display name for your new application. If there are any gallery applications with similar names, they'll appear in a search results list.

    Note

    We recommend using the gallery version of your application whenever possible. If the application you want to add appears in the search results, select the application and skip the rest of this procedure.

  6. Under What are you looking to do with your application? choose Integrate any other application you don't find in the gallery. This option is typically used for SAML and WS-Fed applications.

    Note

    The other two options are used in the following scenarios:

    • Configure Application Proxy for secure remote access to an on-premises application opens the configuration page for Azure AD Application Proxy and connectors.
    • Register an application you're working on to integrate with Azure AD opens the App registrations page. This option is typically used for OpenID Connect applications.
  7. Select Create. The application Overview page opens.

Configure user sign-in properties

  1. Select Properties to open the properties pane for editing.

    Edit properties pane

  2. Set the following options to determine how users who are assigned or unassigned to the application can sign into the application and if a user can see the application in the access panel.

    • Enabled for users to sign-in determines whether users assigned to the application can sign in.

    • User assignment required determines whether users who aren't assigned to the application can sign in.

    • Visible to user determines whether users assigned to an app can see it in the access panel and O365 launcher.

      Behavior for assigned users:

      Application property settings Assigned-user experience
      Enabled for users to sign-in? User assignment required? Visible to users? Can assigned users sign in? Can assigned users see the application?*
      yes yes yes yes yes
      yes yes no yes no
      yes no yes yes yes
      yes no no yes no
      no yes yes no no
      no yes no no no
      no no yes no no
      no no no no no

      Behavior for unassigned users:

      Application property settings Unassigned-user experience
      Enabled for users to sign in? User assignment required? Visible to users? Can unassigned users sign in? Can unassigned users see the application?*
      yes yes yes no no
      yes yes no no no
      yes no yes yes no
      yes no no yes no
      no yes yes no no
      no yes no no no
      no no yes no no
      no no no no no

    *Can the user see the application in the access panel and the Office 365 app launcher?

  3. To use a custom logo, create a logo that is 215 by 215 pixels, and save it in PNG format. Then browse to your logo and upload it.

    Change the logo

  4. When you're finished, select Save.

Next steps

Now that you've added the application to your Azure AD organization, choose a single sign-on method you want to use and refer to the appropriate article below: