Azure Active Directory admin center – How to assign users and groups to app-roles for your application 

Azure Active Directory admin center - Enterprise applications - Graph Explorer application - Users and groups
Azure Active Directory admin center - Enterprise applications - Graph Explorer application - Users and groups

Hi All,

Greetings for the day!!!

In this article we will discuss – How to assign users and groups to app-role for your application

Details :

  • Whenever we need to access the any application we need to have permission to the respective app
  • We could add user to the specific group which is assigned to app or we could also assign user directly to the app
  • We have an option to assign the app-role to the user from Azure Active Directory admin center
  • Log in to the Azure Active Directory admin center either through Microsoft 365 admin center or from direct URL – https://aad.portal.azure.com/

Navigating Azure Active Directory Admin center from Microsoft 365 admin center

fig : Navigating to Microsoft 365 admin center
fig : Navigating to Microsoft 365 admin center
  • Click on “… Show all” from left pane
  • More options will be expanded and we could see now “Admin centers” as shown in below fig
  • We need to navigate to “Azure Active Directory admin center
  • Click on “Azure Active Directory admin center” link for redirecting to “Azure Active Directory admin center
fig : Microsoft 365 admin center - Navigating to "Azure Active Directory admin center" - Admin centers >> Azure Active Directory admin center
fig : Microsoft 365 admin center – Navigating to “Azure Active Directory admin center” – Admin centers >> Azure Active Directory admin center
  • We will be redirected to “Azure Active Directory admin center” as shown in below fig
fig : Azure Active Directory admin center
fig : Azure Active Directory admin center

Assigning role to User / Group :

  • Since we need to assign app-role for user we need to navigate to all applications
  • From left blade / pane click on “Enterprise applications
  • We will see all applications listing there as shown in below fig
fig : Azure Active Directory admin center - Enterprise applications
fig : Azure Active Directory admin center – Enterprise applications
  • From application listing select the application for which we need to assign role
  • Here, I’ll select “Graph Explorer” application since we need to assign app-role for the same
fig : Azure Active Directory admin center - Enterprise applications - Graph Explorer application
fig : Azure Active Directory admin center – Enterprise applications – Graph Explorer application
  • From left pane of “Graph Explorer” application page, click on “Users and groups” link as shown in below fig
  • We will be redirected to the page where we will see users and groups listing to which role assigned as shown in below fig
fig : Azure Active Directory admin center - Enterprise applications - Graph Explorer application - Users and groups
fig : Azure Active Directory admin center – Enterprise applications – Graph Explorer application – Users and groups
  • From the page, click on link “+ Add user/group” as shown in above fig
  • On click of “+ Add user/group” link, right pane will be open as shown in below fig
  • From right pane we could select the user or group to which we need to assign the role
fig : Azure Active Directory admin center - Enterprise applications - Graph Explorer application - Users and groups - Add assignment
fig : Azure Active Directory admin center – Enterprise applications – Graph Explorer application – Users and groups – Add assignment
  • Search / select the user / group to whom we need to assign the role for the respective app
  • Make sure we are clicking on “Select” button as shown in below fig
fig : Azure Active Directory admin center - Enterprise applications - Graph Explorer application - Users and groups - Add assignment
fig : Azure Active Directory admin center – Enterprise applications – Graph Explorer application – Users and groups – Add assignment
  • Once we selected respective user / group, we are ready to assign role
  • Click on “Assign” button as shown in below fig
fig : Azure Active Directory admin center - Enterprise applications - Graph Explorer application - Users and groups - Add assignment
fig : Azure Active Directory admin center – Enterprise applications – Graph Explorer application – Users and groups – Add assignment
  • As we click on “Assign” button, user have access to the app and able to access the respective app
  • Here we are assigning role to “Graph Explorer” application, now with this account we could access the “Graph Explorer

Thanks for reading!! Feel free to discuss in case any issue / suggestions / questions

HAVE A FANTASTIC TIME AHEAD !!! LIFE IS BEAUTIFUL 🙂

Prasham Sabadra

LIFE IS VERY BEAUTIFUL :) ENJOY THE WHOLE JOURNEY :) Founder of Knowledge Junction and live-beautiful-life.com, Author, Learner, Passionate Techie, avid reader. Certified Professional Workshop Facilitator / Public Speaker. Scrum Foundation Professional certificated. Motivational, Behavioral , Technical speaker. Speaks in various events including SharePoint Saturdays, Boot camps, Collages / Schools, local chapter. Can reach me for Microsoft 365, Azure, DevOps, SharePoint, Teams, Power Platform, JavaScript.

You may also like...

1 Response

  1. August 18, 2022

    […] We have very detailed article on how to assign user / group to our application in Azure AD admin center. Azure Active Directory admin center – How to assign users and groups to app-roles for your application – https://knowledge-junction.com/2022/08/17/azure-active-directory-admin-center-how-to-assign-users-an… […]

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

%d bloggers like this: