Microsoft Adds App Delegation Capability to Azure Active Directory

Microsoft has updated Azure Active Directory Premium, adding a new capability to delegate application access rights.

IT pros can designate certain users within an organization to have the authority to assign access to applications. This app "self-provisioning" capability was at the preview stage back in April, but Microsoft announced this week that it has now reached "general availability," or commercial-release status.

The application delegation capability works with "all pre-integrated apps that support federated or password-based single sign-on in the Azure Active Directory app gallery, including apps like Salesforce, Dropbox, Google Apps, and more," Microsoft explained in April. Users with the authority to grant access to apps have to be managed using Azure Active Directory.

App administrators with single sign-on passwords also can be assigned the ability to "set the app usernames and passwords," Microsoft's announcement explained.

All pure Azure Active Directory-managed users have a self-service password reset capability for Office 365 applications, according to a recent Q&A blog post by the Active Directory Azure team. However, this password reset capability needs to be set up first. That's done using either the Azure Management Portal or the Office Administration Portal.

Microsoft this month also turned on a custom roles assignment capability for organizations with Azure Active Directory subscriptions. The custom roles capability, now at general availability status, lets IT pros modify the generic templates included with the Roles Based Access Control feature. It's conceived as a security feature to better limit user resource access.

About the Author

Kurt Mackie is senior news producer for 1105 Media's Converge360 group.


  • How To Configure Windows 10 for Intel Optane Memory

    Intel's Optane memory technology can significantly improve the performance of your Windows 10 system -- provided you enable it correctly. A single mistake can render the system unbootable. Here's how to do it the right way.

  • Microsoft and SAP Enhance Partnership with Teams Integration

    Microsoft and SAP this week described continuing partnership efforts on Microsoft Azure, while also planning a Microsoft Teams integration with SAP's enterprise resource planning product and other solutions.

  • Blue Squares Graphic

    Microsoft Previews Azure IoT Edge for Linux on Windows

    Microsoft announced a preview of Azure IoT Edge for Linux on Windows, which lets organizations tap Linux virtual machine processes that also work with Windows- and Azure-based processes and services.

  • How To Automate Tasks in Azure SQL Database

    Knowing how to automate tasks in the cloud will make you a more productive DBA. Here are the key concepts to understand about cloud scripting and a rundown of the best tools for automating code in Azure.

comments powered by Disqus