Skip to main content
News and Announcements icon
Community site session details

Community site session details

Session Id : Lo9U9sZ9mdPM9xy2xt1Coh
Power Platform Community / Forums / Power Pages - Security / Tenant Guest Users Nee...
Power Pages - Security
Answered

Tenant Guest Users Need Admin Approval to Complete Registration

Like (0) ShareShare
ReportReport
Posted on 3 Dec 2023 19:10:24 by KyleSchroeder

Hello,

 

I've come across an issue in my Production Portal (Power Pages) solution.  I have configured the authentication for users to use Azure AD (Entra ID).  In my Sandbox environment and Portal, this works perfectly for all Tenant users (members and guests).  However, I have recently deployed the portal to a Production environment, and only members are able to complete the invitation process.  Guest users get the invitation code, register it with their contact profile, and then go through the MFA setup process only to see a message saying Approval required. The Sandbox environment was created a year ago, and the Production environment was created back in August 2023.  Does anyone know why Guest users can sign in with Azure AD in the Sandbox version but not the Production version?  Is there a setting in Dynamics 365 that I need to change that I forgot?  This doesn't seem like an Azure AD (Entra ID) thing.  Any assistance would be greatly appreciated!

 

KyleSchroeder_0-1701630556691.png

 

Categories:
Settings
  • Verified answer
    KyleSchroeder Profile Picture
    KyleSchroeder on 05 Dec 2023 at 03:12:48
    Re: Tenant Guest Users Need Admin Approval to Complete Registration

    I've found the solution to my issue, and I hope this will help everyone else.  The cause behind this issue is due to the creator of the Portal/Power Pages site.  The account I was using to create the Production version did not have enough permissions in Azure/Entra, so it was not prompted to approve access to the Microsoft Graph API.  This meant that I needed someone with Global Admin permission to go to Azure AD/Entra ID and follow these steps.

    • Go to entra.microsoft.com
    • Under Applications, select App Registration
    • Search for the name of the Portal/Power Pages and click on the name
    • Go to the API permissions
    • If the APIs have not been approved, the Global Admin needs to click Grant admin consent for <Company Name>

    Once the last step has been completed, it should allow guest users in the tenant to use Azure AD as their OpenID connection and authenticator.  In the future, I'll be looking to use Google and/or Microsoft as alternative authenticators.

  • KyleSchroeder Profile Picture
    KyleSchroeder on 03 Dec 2023 at 23:58:04
    Re: Tenant Guest Users Need Admin Approval to Complete Registration

    Can you elaborate a little more on "Configure it for the Azure Application"?  When I go to Azure and find both Portals in App Registration under Applications, they both have identical configurations and I don't see anything that stands out.  I know this didn't need to done for the Sandbox version or the other Portals solutions I've built and migrated.

  • Fubar Profile Picture
    Fubar 8,023 Super User 2025 Season 1 on 03 Dec 2023 at 22:38:25
    Re: Tenant Guest Users Need Admin Approval to Complete Registration

    The Message you are seeing is an Azure message.  I can't remember where the setting is exactly, but think it is to do with the Consent workflow, in Azure locate the Application that will exist for the Portal/Power Pages site and you configure it for the Azure Application. 

     

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

News and Announcements

Now Available: 2025 Release Wave 2
Welcome to the Power Platform Communities

Quick Links

Paul Stork – Community Spotlight

We are honored to recognize Paul Stork as our July 2025 Community…

Congratulations to the June Top 10 Community Leaders!

These are the community rock stars!

Announcing the Engage with the Community forum!

This forum is your space to connect, share, and grow!

Leaderboard > Power Pages

#1
Lucas001 Profile Picture

Lucas001 60 Super User 2025 Season 1

#2
Fubar Profile Picture

Fubar 55 Super User 2025 Season 1

#3
surya narayanan Profile Picture

surya narayanan 35

Last month Overall leaderboard

Featured topics

Product updates

Microsoft Power Platform Community release plans