Skip to main content

Notifications

Announcements

🌸 Community Spring Festival 2025 Challenge 🌸
Welcome to the Power Platform Communities
News and Announcements icon
Community site session details

Community site session details

Session Id : 9uVb/KNBmep0HOeL7pB4cR
Power Platform Community / Forums / Power Pages - Security / Power pages website fo...
Power Pages - Security
Suggested answer

Power pages website for large number of internal users

Like (0) ShareShare
ReportReport
Posted on 13 Jan 2025 10:51:48 by surgul

I am exploring security options for a Power Pages (+ Dataverse) website that will be accessed exclusively by my organization's internal users (on Azure AD). The website will serve two primary groups:

  1. A majority of users (500+) will use the website to submit tickets.
  2. A smaller group (200+) will use the website to take actions on those tickets.

I would appreciate insights and best practices on the following topics:

  1. Authentication: Since the website will need to be accessed by more than 50 organizational users, it appears the site visibility must be set to "Public." If this is correct, what are the available options and best practices to:

    • Restrict access to a predefined set of internal users in the organization's Azure AD?
    • Prevent access to website guests or unauthenticated users?
      (Note: I think there is 50-user limit for granting access to Private websites.)

  2. Registration: Is it possible to pre-register users along with their web roles, rather than requiring them to self-register? (Note: The website will have users assigned to three different roles.)

  3. Roles and Authorization: Will it be necessary to replicate the web-role security permissions in Dataverse roles, or is there a better approach?

Thanks in advance for your guidance!

 
 
Categories:
General
  • Lucas001 Profile Picture
    Lucas001 2,143 Super User 2025 Season 1 on 16 Jan 2025 at 06:14:16
    Power pages website for large number of internal users
    Hi,
     
    as you are not mentioning that the also have to work in the backend.
    Use a PowerAutomate Flow to get the teams with the respected security settings and assign the needed webrole.
    This way you can make the needed pages available for each user group.
  • Suggested answer
    SaiRT14 Profile Picture
    SaiRT14 1,961 Super User 2025 Season 1 on 14 Jan 2025 at 21:32:30
    Power pages website for large number of internal users
     
    Authentication - Use Azure AD as the identity provider and enforce access policies for specific user groups.
    User Management - Pre-register users in Dataverse with mapped roles using Power Automate or Excel import.
    Authorization - Configure both Web Roles and Dataverse Security Roles with minimal required permissions.
    Security - Enable session timeouts, logging, and auditing to track and secure access.
     
    thanks

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

News and Announcements

🌸 Community Spring Festival 2025 Challenge 🌸
Welcome to the Power Platform Communities

Quick Links

🌸 Community Spring Festival 2025 Challenge 🌸

WIN Power Platform Community Conference 2025 tickets!

Markus Franz – Community Spotlight

We are honored to recognize Markus Franz as our April 2025 Community…

Kudos to the March Top 10 Community Stars!

Thanks for all your good work in the Community!

Leaderboard

#1
WarrenBelz Profile Picture

WarrenBelz 146,513 Most Valuable Professional

#2
RandyHayes Profile Picture

RandyHayes 76,287 Super User 2024 Season 1

#3
Pstork1 Profile Picture

Pstork1 65,681 Most Valuable Professional

Leaderboard

Featured topics

Product updates

Microsoft Power Platform Community release plans