stackoom
  简体   繁体   中英

Restrict Azure Enterprise Application access by App-ID

 原文  2021-05-06 17:33:15       azure/ openid-connect/ scopes

Question

i am looking fo a way to restrict an enterprise application in Azure to only access certain data in M365 SharePoint. The app itself is externally hosted using OIDC and requests "offlice_access_scope".

I would like to restrict access of this application to a specific SharePoint (M365) Site. Is there a way to do so - or am I completly wrong?

1 answers

solution1
 0  2021-05-07 00:33:42

Looking at this article: Granting access via Azure AD It would seem that this isn't possible as you can not give specific access scopes in Azure. Further to this the way Dynamics implements this is application users which do not exist in Sharepoint.

SharePoint Online permission control for Azure AD service principal OAuth This post references a possible way to do it but it is using SharePoint App-Only which is not being used here from what I can see.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Azure Active Directory revoke a set of user-sessions for a given aad app-id Restrict Azure Application access to a specific folder in OneDrive Difference between "enterprise application" and "app registration" in Azure Azure Web App - Restrict access to API Management Secret Key / Access Key with Azure Active Directory, enterprise application, app roles? Azure - restrict access to app service only Azure restrict access to web app by ip range Creating an application registration to access Azure REST API under enterprise agreement For azure enterprise app, is it possible to allow app role to be managed by the application programmatically? How to restrict access to an azure function based on a service pringcipal id
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM