Skip to main content

Notifications

Announcements

🌸You're Invited: Community Spring Festival Awards Celebration 🌸
Replay: Power Platform Community AMA - Copilot Studio | April
Welcome to the Power Platform Communities
News and Announcements icon
Community site session details

Community site session details

Session Id : ovoWmWp/ugX0MeEDzvt8Ug
Power Platform Community / Forums / Power Apps - Power Apps Governance and Administ... / What is the best way t...
Power Apps - Power Apps Governance and Administ...
Unanswered

What is the best way to manage this security roles?

Like (0) ShareShare
ReportReport
Posted on 7 Jul 2022 20:39:15 by Vitss 315

I made an App in a solution with the use of a custom connector.

On Dev and Test everything went relatively fine but when moving the app to Prod Users get an error when trying to open the app.

Conclusion was that is was not possible to make a connection for the custom connector due a rights issue.

Giving permission in the admin center with the security role 'basic user' dit the trick.

 

My question is what is the best way to manage this security roles.

Now we use security groups in Onperm AD like GRP_SecurityRoleAPPName.

This group is then filled with usergroups that are managed by the servicedesk.

 

There is a sync to AAD and that AAD GRP_SecurityRoleAPPName is then added to the BasicUser security role in the admin center.

Seems thou that this is not working with nested groups so we need to add all individual Users to the BasicUser group.

 

What is the best way to solve that because this  is not manageable with continuous changing users.

 

Thanks for the advise.

It will be gratefully being appreciated

  • Vitss Profile Picture
    Vitss 315 on 09 Jul 2022 at 08:30:15
    Re: What is the best way to manage this security roles?

    Thanks, @Ionaaa , I will look into this,

    I do not have admin rights on the azure AD but will ask an admin what they can du.

  • Ionaaa Profile Picture
    Ionaaa 94 on 08 Jul 2022 at 13:47:37
    Re: What is the best way to manage this security roles?

    Dynamic Azure AD security groups should be working. You can add the AD group as a "Team" in an environment and have the option set to Members only. You can then assign Basic User and additional security roles to that team.

    Don't forget to assign licenses to either users or the AD group 😉

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

News and Announcements

🌸You're Invited: Community Spring Festival Awards Celebration 🌸
Replay: Power Platform Community AMA - Copilot Studio | April
Welcome to the Power Platform Communities

Quick Links

Understanding Microsoft Agents - Introductory Session

Confused about how agents work across the Microsoft ecosystem? Register today!

Warren Belz – Community Spotlight

We are honored to recognize Warren Belz as our May 2025 Community…

Kudos to the March Top 10 Community Stars!

Thanks for all your good work in the Community!

Leaderboard

#1
WarrenBelz Profile Picture

WarrenBelz 146,731 Most Valuable Professional

#2
RandyHayes Profile Picture

RandyHayes 76,287 Super User 2024 Season 1

#3
Pstork1 Profile Picture

Pstork1 66,075 Most Valuable Professional

Leaderboard

Featured topics

Product updates

Microsoft Power Platform Community release plans