What is Azure Active Directory?
Azure Active Directory (Azure AD) is Microsoft's cloud-based identity and access management service.
It helps your employees sign in and access resources in:
- External resources, such as Microsoft Office 365, the Azure portal, and thousands of other SaaS applications.
- Internal resources, such as apps on your corporate network and intranet, along with any cloud apps developed by your own organization.
Why does UpSlide rely on Azure Active Directory?
As an app developer, we use Azure AD to provide APIs that help us build personalized app experiences using your existing organizational data:
This is done by using an Azure AD App Registration. There are two options here:
1. We can provide our own Azure AD Application that is multi-tenant
- This does not mean that UpSlide will have access to content as the permission requested is delegated and needs User Sign In.
2. You can use your own Azure AD Application that UpSlide Add-In will use to access your content.
Delegated vs App permissions
An Azure AD Application can have two types of permissions: Delegated vs Application permissions.
- Application permissions allow an application in Azure Active Directory to act as its own entity rather than on behalf of a specific user.
- Delegated permissions allow an application in Azure Active Directory to perform actions on behalf of a user.
UpSlide uses delegated permissions to let you handle all the security controls about your corporate content.
Application Consent
Before an application can access your organization's data, a user must grant the application permission to do so. Different permissions allow different levels of access. This consent can also be done globally by a Tenant Administrator. Please refer to this article for more details.
I want to use my own Azure AD Application. What should I do?
Please refer to this article.
I want to revoke access from my organization. What should I do?
Please refer to this article.