Forum Discussion

Vamsheeth's avatar
Vamsheeth
Occasional Reader
Dec 20, 2024

Limitations on Modifying Enterprise Applications in Azure AD

Hi All,

I'm curious about the limitations on modifying Enterprise Applications in Azure AD. Specifically, are there any restrictions on how frequently we can make changes to attributes, ACS, or reply URLs?

I understand that modifying these settings can impact user access, but I'm concerned about potential rate limits or other restrictions that might prevent frequent updates.

Any insights or best practices for managing these changes would be greatly appreciated.

Post Script We don't have a dedicated QA environment, so understanding these limitations will help us plan our changes carefully.

  • DylanInfosec's avatar
    DylanInfosec
    Brass Contributor

    Hi Vamsheeth,

    There should be no limits that would affect your ability to change these fields at a reasonable rate but I honestly can't imagine a scenario where you'd need to change these fields too frequently. Genuinely interested to hear what your use case might be or if its just a general concern to correct possible errors immediately after identification? 

     

    Personal experience-wise, I've had to correct a few issues back-to-back-to-back with no interruptions and the was able to confirm each change was put into affect on each test request.

     

    Nevertheless, if you're modifying them via the API you should be aware of service-specific rate limits around Identity and Access services (applications): https://learn.microsoft.com/en-us/graph/throttling-limits#identity-and-access-service-limits 

     

    Best regards,

    Dylan

Resources