web
You’re offline. This is a read only version of the page.
close
Skip to main content

Announcements

Welcome to the Power Platform Communities
News and Announcements icon
Community site session details

Community site session details

Session Id :
Power Platform Community / Forums / Power Automate / Limiting the use of Az...
Power Automate
Answered

Limiting the use of Azure AD Connector in Power Automate

(0) ShareShare
ReportReport
Posted on by MarkPP 107

Hi

 

I wanted to clarify something in regards to the Azure AD Connector in Power Automate. If users want to use this a Global admin (GA) needs to consent on behalf of the organisation. The privileges behind this connector are very high E.g. Group.ReadWrite.All, User.ReadWrite.All, Directory.ReadWrite.All. Therefore i absolutely don't want all users making use of this connector. I have read some articles around not consenting on behalf of the organisation and trying to grant access to individuals instead but it all seems a bit long winded. Therefore is the below the way to do this now?

 

A GA consents on behalf of the organisation for this connector and then goes to the underlying Enterprise Application "MSFT Power Platform - Azure AD" in Azure AD. In the properties for the Enterprise Application set User assignment required to Yes and then under the Users and groups add the limited number of people in there that you want to use the connector as per the picture below?

 

UserAssignment.png

 

Thanks

 

 

 

Categories:
Using connectors
I have the same question (0)
  • Verified answer
    rimatos Profile Picture
    rimatos Microsoft Employee on at

    Hi @MarkPP,

     

    Yes, this would be one way to restrict users access to the application, since the users would need to be inserted in the group of that Enterprise application to access it.

     

    However, in order for them to be able to access it you also need to make sure they have the correct roles assigned to them, since the connector only allows them to do actions to the same level they can do both in the UI and via REST API.

    You have her a in depth guide on the different admin roles available. 

     

    Additionally, you also have a article on how to achieve granular access to this connector here


    Hope this information was useful!

     

    Regards,

    Ricardo

  • ValentinMazhar Profile Picture
    ValentinMazhar 21 on at

    Hello @MarkPP ,

    I know that this thread is marked as resolved, and the methods to grant access of this connector to specific users work.

    However I just thought it worth mentioning that the permissions granted to the App "MSFT Power Platform - Azure AD" are delegated. It means that even after a global admin has granted consent to the app, users will not be able to do anything with the connector that they are not already able to do of they connect to the Azure AD portal.

    Hope it helps and clarifies!

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

News and Announcements

Welcome to the Power Platform Communities

Quick Links

Introducing the 2026 Season 1 community Super Users

Congratulations to our 2026 Super Users!

Kudos to our 2025 Community Spotlight Honorees

Congratulations to our 2025 community superstars!

Congratulations to the March Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > Power Automate

#1
Haque Profile Picture

Haque 630

#2
Valantis Profile Picture

Valantis 420

#3
11manish Profile Picture

11manish 350

Last 30 days Overall leaderboard

Featured topics

Share your ideas and struggles with building Power Automate flows!
Survey: Power Automate mobile app
How to Ask for Help with Your Power Automate Workflow
Flows are not visible for users who sign in with their personal accounts
Start and wait for an approval action
Restore a deleted flow
List of actions cheat sheet for Power Automate Desktop
Question for everyone : How are you using Create Text GPT in AI Builder?
Welcome to the Power Automate forum!

Product updates

Microsoft Power Platform Community release plans