External User Application Allowance

This guide will allow administrators to add desired applications that invited external users will have access to.

Role Requirements

Procedure Scope: Administrators

Required Group Membership: Admin.Security

Handbook Reference

Package: Identity Security

Domain: Guest Protection Management

Modifies: Sanctioned External User Applications

External User Application Allowance

1. Navigate to Conditional Access Policies – Azure Active Directory, locate and select the Security Essentials: C16 – External User Application Restriction policy.
   
2. A pop up will be displayed containing all the configured settings being enforced by the policy. Locate and select the Target Resources section followed by the Exclude header. Under the Select Excluded Cloud Apps option select the hyperlink to generate the list of all current cloud application that are exempt. Do not modify any other settings listed, failure to abide could result in resources not being protected properly or a mass lockout scenario due to misconfiguration.
   
3. From the list you will be able to select the desired Cloud Applications specified by management. Use the provided text field to search for the application by name or backend process name, select the name in the generated list below, once selected they will be displayed in the Selected Items section. Finalize the app selection by hitting Select.
   
4. Once the necessary exemptions have been made and the application is generating in the list of Selected Excluded Cloud Apps, select Save to finalize the External Application Access addition process.
   

Need Assistance?