Azure Active Directory admin center – How to assign users and groups to app-roles for your application

Hi All,
Greetings for the day!!!
In this article we will discuss – How to assign users and groups to app-role for your application
Details :
- Whenever we need to access the any application we need to have permission to the respective app
- We could add user to the specific group which is assigned to app or we could also assign user directly to the app
- We have an option to assign the app-role to the user from Azure Active Directory admin center
- Log in to the Azure Active Directory admin center either through Microsoft 365 admin center or from direct URL – https://aad.portal.azure.com/
Navigating Azure Active Directory Admin center from Microsoft 365 admin center
- Log in to the Microsoft 365 admin center – https://admin.microsoft.com/ as
- Click on “… Show all” from left pane
- More options will be expanded and we could see now “Admin centers” as shown in below fig
- We need to navigate to “Azure Active Directory admin center”
- Click on “Azure Active Directory admin center” link for redirecting to “Azure Active Directory admin center“

- We will be redirected to “Azure Active Directory admin center” as shown in below fig
Assigning role to User / Group :
- Since we need to assign app-role for user we need to navigate to all applications
- From left blade / pane click on “Enterprise applications“
- We will see all applications listing there as shown in below fig
- From application listing select the application for which we need to assign role
- Here, I’ll select “Graph Explorer” application since we need to assign app-role for the same
- From left pane of “Graph Explorer” application page, click on “Users and groups” link as shown in below fig
- We will be redirected to the page where we will see users and groups listing to which role assigned as shown in below fig

- From the page, click on link “+ Add user/group” as shown in above fig
- On click of “+ Add user/group” link, right pane will be open as shown in below fig
- From right pane we could select the user or group to which we need to assign the role

- Search / select the user / group to whom we need to assign the role for the respective app
- Make sure we are clicking on “Select” button as shown in below fig

- Once we selected respective user / group, we are ready to assign role
- Click on “Assign” button as shown in below fig

- As we click on “Assign” button, user have access to the app and able to access the respective app
- Here we are assigning role to “Graph Explorer” application, now with this account we could access the “Graph Explorer“
Thanks for reading!! Feel free to discuss in case any issue / suggestions / questions
HAVE A FANTASTIC TIME AHEAD !!! LIFE IS BEAUTIFUL 🙂
1 Response
[…] We have very detailed article on how to assign user / group to our application in Azure AD admin center. Azure Active Directory admin center – How to assign users and groups to app-roles for your application – https://knowledge-junction.com/2022/08/17/azure-active-directory-admin-center-how-to-assign-users-an… […]