What is Microsoft's Active Directory?
Microsoft Active Directory is a cloud-based identity and access management service. It helps employees sign in and access:
- External resources, such as Microsoft Office 365, the Entra ID portal, and thousands of other SaaS applications.
- Internal resources, such as apps on your corporate network and intranet, along with any cloud apps developed by your own organization.
Why does UpSlide rely on Microsoft's Active Directory?
As an app developer, we use Microsoft's AD to provide APIs that help us build personalized app experiences using your existing organizational data:
This is done by using an Entra ID App Registration. There are two options here:
1. We can provide our own Entra ID Application that is multi-tenant
- This does not mean that UpSlide will have access to content as the permission requested is delegated and needs User Sign In.
2. You can use your own Entra ID Application that UpSlide Add-In will use to access your content.
Delegated vs App permissions
An Entra ID Application can have two types of permissions: Delegated vs Application permissions.
- Application permissions allow an application in Azure Active Directory to act as its own entity rather than on behalf of a specific user.
- Delegated permissions allow an application in Azure Active Directory to perform actions on behalf of a user.
UpSlide uses delegated permissions to let you handle all the security controls related to your corporate content.
Application Consent
Before an application can access your organization's data, a user must grant the application permission to do so. Different permissions allow different levels of access. A tenant administrator can also provide this consent globally. Please refer to this article for more details.
I want to use my own Entra ID Application. What should I do?
Please refer to this article.
I want to revoke access from my organization. What should I do?
Please refer to this article.