Microsoft Entra – registering new application and assigning permissions to access Microsoft Graph APIs
Microsoft Entra admin center - Register an application page - creating new application
Hi All,
Greetings for the day!
In this article we will discuss how to register new application and granting permissions to application to access the Graph API
Background / Use Case
- In one of the scenario I was using Microsoft Graph PowerShell and connecting Microsoft Graph using Connect-MgGraph PowerShell CMDLET
- I want to connect Microsoft Graph using application id (App ID / Client ID) and certificate
- So to use App ID, we need to register the new application and here is the article
Steps to create / register new application from UI – from Microsoft Entra admin center
- Navigate to Microsoft Entra admin center – https://entra.microsoft.com/#view/Microsoft_AAD_RegisteredApps/CreateApplicationBlade/quickStartType~/null/isMSAApp~/false?Microsoft_AAD_IAM_legacyAADRedirect=true
- We have detailed article as well for navigating – Microsoft Entra admin center – Small Tips and Tricks – Microsoft Entra admin center – How to navigate – Microsoft Entra admin center – https://knowledge-junction.in/2022/12/19/small-tips-and-tricks-microsoft-entra-admin-center-how-to-navigate-microsoft-entra-admin-center/
- We will be on Microsoft Entra admin center overview page as
- From the left blade / menu, we will navigate to “App registrations” page – https://entra.microsoft.com/#view/Microsoft_AAD_RegisteredApps/ApplicationsListBlade/quickStartType~/null/sourceType/Microsoft_AAD_IAM?Microsoft_AAD_IAM_legacyAADRedirect=true
- On “App registration” page we have listing of all existing apps as well as an option for creating new App as
- Click on “+ New registration” link as shown in above snap
- We will be navigated to – “Register an application” page – CreateApplicationBlade as in below snap https://entra.microsoft.com/#view/Microsoft_AAD_RegisteredApps/CreateApplicationBlade/quickStartType~/null/isMSAApp~/false?Microsoft_AAD_IAM_legacyAADRedirect=true
- Please enter the respective details –
- Application Name
- Supported account types – currently we will select single tenant option – for my tenant only
- Click on “Register” button
- Application creation process will start
- Once application created successfully – we will have message popup at right top corner as in below snap
- Here please note the Application (client) ID – we need to use it
Once application created successfully, next step is granting permission to our application to access Graph APIs
Steps to Grant Permissions to Application to access Microsoft Graph APIs
- From the Application overview page, from left blade (menu) click on option “API permissions” as
- As we click on “API permissions” link from left menu , we will be redirected to “API Permissions” page as in below snap
- On “API permissions” page we have current list of permissions and details.
- We have also an option to give new permissions – “+ Add a permission” link and also an option to “Grant admin consent for tenant“
- To give permission to our application , please click on “+ Add a permission“, we will be redirected to “Request API permissions” page as in below snap
- From “Request API permissions” page we select “Microsoft Graph” as shown in above snap
- As we select “Microsoft Graph“, next we need to select – type of permissions either “Delegated permissions” or “Application permissions” as in below snap
- Since we are discussing permissions for our app we will select “Application permissions” as in below snap
- As we click on “Application permissions” we will have list of all permissions to select as shown in below fig
- From the permissions list, currently we are selecting – “Sites.FullControl.All” as in above snap
- After selecting respective permissions please click on “Add permissions” button at the bottom
- Once permissions are set, we will get a pop up at right top corner – “Updating permissions” as in below snap
- Now, on behalf of app, we could access all the sites using GRAPH APIs or Graph PowerShell
Next step is to create certificate and upload to the app – we will cover in next article
REFERENCES
- Small Tips and Tricks – Microsoft Entra admin center – How to navigate – Microsoft Entra admin center – https://knowledge-junction.in/2022/12/19/small-tips-and-tricks-microsoft-entra-admin-center-how-to-navigate-microsoft-entra-admin-center/
Thanks for reading !
Stay tuned for more articles on Microsoft Graph PowerShell!
HAPPY LEARNING AHEAD 🙂 LIFE IS BEAUTIFUL 🙂
![PowerShell : resolving error - Method invocation failed because [System.Management.Automation.PSObject] does not contain a method named 'op_Addition'](https://i0.wp.com/knowledge-junction.in/wp-content/uploads/2024/06/fig1.png?fit=944%2C103&ssl=1&resize=40%2C40){kind=small}
7 Responses
[…] To register an Application in Azure AD – we have detailed article for registering an application from Microsoft Entra admin center – Microsoft Entra – registering new application and assigning permissions to access Microsoft Graph APIs – https://microsoft365hub.in/2024/01/18/microsoft-entra-registering-new-application-and-assigning-per… […]
[…] Navigate to our registered application in the Microsoft Entra ID portal and grant the necessary permissions. If you are unsure how to do this, refer to below guide for step-by-step instructions – https://microsoft365hub.in/2024/01/18/microsoft-entra-registering-new-application-and-assigning-perm… […]
[…] Navigate to our registered application in the Microsoft Entra ID portal and grant the necessary permissions. If you are unsure how to do this, refer to below guide for step-by-step instructions – https://microsoft365hub.in/2024/01/18/microsoft-entra-registering-new-application-and-assigning-perm… […]
[…] Navigate to our registered application in the Microsoft Entra ID portal and grant the necessary permissions. If you are unsure how to do this, refer to below guide for step-by-step instructions – https://microsoft365hub.in/2024/01/18/microsoft-entra-registering-new-application-and-assigning-perm… […]
[…] By following these steps, we grant the necessary permissions to our application, allowing it to interact seamlessly with Microsoft 365 services. If you encounter any issues, refer to our comprehensive guide on granting permissions for detailed assistance – https://microsoft365hub.in/2024/01/18/microsoft-entra-registering-new-application-and-assigning-perm… […]
[…] Navigate to our registered application in the Microsoft Entra ID portal and grant the necessary permissions. If you are unsure how to do this, refer to below guide for step-by-step instructions – https://knowledge-junction.in/2024/01/18/microsoft-entra-registering-new-application-and-assigning-p… […]
[…] We could create / register the app from Microsoft Entra admin center. We have detailed article for the same. Microsoft Entra – registering new application and assigning permissions to access Microsoft Graph APIs – https://knowledge-junction.in/2024/01/18/microsoft-entra-registering-new-application-and-assigning-p… […]