Delete Application Scopes

As an owner of an Azure application, you possess the authority to manage and streamline your application's scopes. This includes the ability to delete unnecessary or outdated scopes from your applications directly through Resource Admin. When you initiate a scope deletion, EmpowerID acts on your behalf, executing the request by removing the specified scope in Azure. This article will walk you through the steps to efficiently manage your application’s scopes, ensuring your Azure application remains optimized and secure.

Procedure

  1. Navigate to the Resource Admin application portal for your environment.

  2. Select Applications from the Resource menu and search for the application from which you want to remove a scope.

  3. Click the Details button on the application record.

    image-20240116-161601.png

     

  4. Select Scopes on the application menu and search for the scope you want to remove from the application.

    image-20240116-195537.png

     

  5. Click the Delete button for the scope you want to delete.

     

  6. Click Delete to confirm your decision.


    You should see a message stating the scope was deleted.

Results

The API permissions are removed from the application. You can verify the changes in Azure by doing the following:

  1. In Azure, navigate to Microsoft Entra ID > App registrations.

  2. Select All applications and search for the target application.

  3. Click the Display Name link for the application.

  4. Under Manage, click Expose an API. The scope should no longer exist for the application.

 

EmpowerID maintains an Audit log of all operations that occur in the system. To view the log for this operation, expand System Logs and select Audit Log on the navbar.

You should see the deletion record in the log.