Saiful Islam
Reputation: 186
Is it possible get Client tenant user role as claim on app tenant ad token
I have an Auth AD Tenant(Multi-Tenant) and multiple Client AD Tenant(Single-Tenant) App.
Is it possible to get a user role that is set on their own single-tenant client ad app in a claim on token get from Auth AD by sign-in?
If possible what is the configuration? I am using the MSAL library to handle AD on my Angular Application.
Upvotes: 1
Views: 93
Answers (1)
Martin Brandl
Reputation: 59001
Not sure whether this helps you but you should be able to define an application role in your multi-tenant application registration and map user groups to that role using a role assignment. See: Add app roles to your application and receive them in the token
Upvotes: 0
Related Questions
- Add tenant specific roles in Azure AD multitenant app
- Azure AD Access token of Client Application does not contain Roles Claims
- Unable to set client claims when acquiring confidential client application token
- Why does my bearer token not contain any app roles when using client credentials flow in a multi tenant scenario in Azure?
- Azure AD: How assign App roles for users from another tenant
- Azure AD application permissions: Is it possible to get permissions which comes under "Other permissions granted for tenant"?
- Azure AD - missing roles claim in app-only tokens
- return Azure AD Application Role in token requested through client_credentials grant
- Azure AD App Authorization with active roles
- How do I register an app in client's active directory using my multi tenant app in microsoft azure?