Forum Discussion
Solved
Re. App Registrations and Ent Apps user settings
Hi all, I need some help trying to understand this better so I can set the correct settings. In Azure AD under User Settings, there is a section about App Registrations with a YES / NO toggle s...
- Hi Ronnie
I have blogged about that one: https://365bythijs.be/2020/01/05/protecting-against-oauth-attacks-setting-up-admin-consent-workflow/
To summarize:
I agree with your choice to disable user consent to applications, for security reasons. It is safer that way.
If you approve the app for one user, another user can get access to that app without needing approval from you again
Hi Ronnie
I have blogged about that one: https://365bythijs.be/2020/01/05/protecting-against-oauth-attacks-setting-up-admin-consent-workflow/
To summarize:
I agree with your choice to disable user consent to applications, for security reasons. It is safer that way.
If you approve the app for one user, another user can get access to that app without needing approval from you again
I have blogged about that one: https://365bythijs.be/2020/01/05/protecting-against-oauth-attacks-setting-up-admin-consent-workflow/
To summarize:
I agree with your choice to disable user consent to applications, for security reasons. It is safer that way.
If you approve the app for one user, another user can get access to that app without needing approval from you again
Thijs Lecomte Thank you for confirming 🙂 I am glad I was not completely far off with this 🙂
RippieUK It all comes down to balancing security vs user-friendliness, as long as your end-users not complaining you're all good 😉 We on the other hand need to carefully raise all (almost) configuration up for management approval, which can be quite frustrating sometimes.
