cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
SOLVED

Enterpsie application permissions for users

ukkaapie
Copper Contributor

‎Jan 12 2022 07:11 AM

‎Jan 12 2022 07:11 AM

Enterpsie application permissions for users

Hi,

I am trying to find out how to provide access for standard user accounts in Azure AD to access Microsoft Graph PowerShell.  I do not want to give admin consent to the whole of AzureAD, only to a specific number of people and only specific permissions.

 

I need to do this as I am writing a script to report using Graph and want to use the currently logged on user for access to Graph PowerShell to retrieve the data that is needed. This will be across many tenants so to have a registered app does not work too well as each tenant will have a different app id and secret.

 

Does any of this make sense?

Labels:
784 Views
0 Likes
2 Replies
Reply
2 Replies
best response confirmed by ukkaapie (Copper Contributor)
ukkaapie

‎Jan 12 2022 09:35 AM

‎Jan 12 2022 09:35 AM

Solution

Re: Enterpsie application permissions for users

I, by mistake, fell upon the solution. I had tried it before but it didn't work so not sure what I didn't do last time.
The solution was to set it so that users could request consent on the login page (when connecting to mg graph using "connect-mggraph"). Once I did that I, as admin, was able to approve the request and only the select permissions were added to the permissions list in the enterprise app. This, I found, made those permissions available for anyone using the enterprise app so only needed to do it once.
0 Likes
Reply
princej93

‎Feb 03 2023 01:52 AM

‎Feb 03 2023 01:52 AM

Re: Enterpsie application permissions for users

Once the permissions are applied, do they stay in place. They don't need to be requested each time?
0 Likes
Reply
1 best response

Accepted Solutions
best response confirmed by ukkaapie (Copper Contributor)
ukkaapie

‎Jan 12 2022 09:35 AM

‎Jan 12 2022 09:35 AM

Solution

Re: Enterpsie application permissions for users

I, by mistake, fell upon the solution. I had tried it before but it didn't work so not sure what I didn't do last time.
The solution was to set it so that users could request consent on the login page (when connecting to mg graph using "connect-mggraph"). Once I did that I, as admin, was able to approve the request and only the select permissions were added to the permissions list in the enterprise app. This, I found, made those permissions available for anyone using the enterprise app so only needed to do it once.

View solution in original post

0 Likes
Reply