You are viewing an earlier version of the admin guide. For the latest version, please visit EmpowerID Admin Guide v7.211.0.0.

Assign Application Roles to Users

If your organization integrates applications with Azure AD, you can manage those applications in EmpowerID. This includes onboarding applications, assigning users to application roles, editing applications, and deleting applications. In this article, you add a user to the Cloud Application Administrator role for an Azure application and verify the role assignment in Azure.

Assign an Azure AD role to a user for an application

  1. On the navbar, expand Azure RBAC Manager and select Resources.

  2. Select the Applications tab and then search for the target application.

  3. Click the Application link.


    This opens the View One page for the application. View One pages allow you to view and manage the objects to which they pertain.

     

  4. Expand the Role Assignments accordion and click the Add [+] button.


    This opens the Assignment Page for the application. You use this page to select one or more users who belong to the tenant with the application, and the Azure AD role assignments for those users against the target application.

     

  5. Search for and select the desired account(s).

  6. Select the desired Azure AD role.

     

  7. Optionally, add a comment.

  8. Click Add.

     

  9. Click Submit.


    You should see the assignment in the Role Assignments accordion grid.



Verify the application role assignment in Azure

  1. In Azure, navigate to Azure AD > App registrations.

  2. Select All applications and search for the target application.

  3. Click the Display Name link for the application.

     

  4. Under Manage, click Roles and administrators | Preview and then click the record for the role you assigned to a user in EmpowerID.


    You should see the user(s) you assigned to the role in EmpowerID.

 




Â