Skip to content

Commit 9bdfe52

Browse files
Learn Build Service GitHub AppLearn Build Service GitHub App
authored andcommitted
Merging changes synced from https://github.com/MicrosoftDocs/azure-docs-pr (branch live)
2 parents 1e1ae88 + 2a6cf14 commit 9bdfe52

File tree

201 files changed

+3515
-834
lines changed

Some content is hidden

Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.

201 files changed

+3515
-834
lines changed

.openpublishing.redirection.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -13460,7 +13460,7 @@
1346013460
},
1346113461
{
1346213462
"source_path_from_root": "/articles/security/fundamentals/iot-best-practices.md",
13463-
"redirect_url": "/azure/iot/iot-security-best-practices",
13463+
"redirect_url": "/azure/iot/iot-overview-security",
1346413464
"redirect_document_id": false
1346513465
},
1346613466
{

articles/active-directory/conditional-access/concept-conditional-access-cloud-apps.md

Lines changed: 18 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -6,12 +6,12 @@ services: active-directory
66
ms.service: active-directory
77
ms.subservice: conditional-access
88
ms.topic: conceptual
9-
ms.date: 09/14/2022
9+
ms.date: 06/27/2023
1010

1111
ms.author: joflore
1212
author: MicrosoftGuyJFlo
1313
manager: amycolannino
14-
ms.reviewer: calebb
14+
ms.reviewer: lhuangnorth
1515

1616
ms.collection: M365-identity-device-management
1717
---
@@ -141,6 +141,21 @@ For more information on how to set up a sample policy for Microsoft Azure Manage
141141
> [!TIP]
142142
> For Azure Government, you should target the Azure Government Cloud Management API application.
143143
144+
### Microsoft Admin Portals (preview)
145+
146+
When a Conditional Access policy targets the Microsoft Admin Portals cloud app, the policy is enforced for tokens issued to application IDs of the following Microsoft administrative portals:
147+
148+
- Microsoft 365 Admin Center
149+
- Exchange admin center
150+
- Azure portal
151+
- Microsoft Entra admin center
152+
- Security and Microsoft Purview compliance portal
153+
154+
Other Microsoft admin portals will be added over time.
155+
156+
> [!NOTE]
157+
> The Microsoft Admin Portals app applies to interactive sign-ins to the listed admin portals only. Sign-ins to the underlying resources or services like Microsoft Graph or Azure Resource Manager APIs are not covered by this application. Those resources are protected by the [Microsoft Azure Management](#microsoft-azure-management) app. This enables customers to move along the MFA adoption journey for admins without impacting automation that relies on APIs and PowerShell. When you are ready, Microsoft recommends using a [policy requiring administrators perform MFA always](howto-conditional-access-policy-admin-mfa.md) for comprehensive protection.
158+
144159
### Other applications
145160

146161
Administrators can add any Azure AD registered application to Conditional Access policies. These applications may include:
@@ -158,7 +173,7 @@ Some applications don't appear in the picker at all. The only way to include the
158173

159174
### All cloud apps
160175

161-
Applying a Conditional Access policy to **All cloud apps** will result in the policy being enforced for all tokens issued to web sites and services. This option includes applications that aren't individually targetable in Conditional Access policy, such as Azure Active Directory.
176+
Applying a Conditional Access policy to **All cloud apps** results in the policy being enforced for all tokens issued to web sites and services. This option includes applications that aren't individually targetable in Conditional Access policy, such as Azure Active Directory.
162177

163178
In some cases, an **All cloud apps** policy could inadvertently block user access. These cases are excluded from policy enforcement and include:
164179

articles/active-directory/develop/howto-remove-app.md

Lines changed: 9 additions & 7 deletions
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,6 @@
11
---
22
title: "How to: Remove a registered app from the Microsoft identity platform"
3-
description: In this how-to, you learn how to remove an application registered with the Microsoft identity platform.
3+
description: Learn how to remove an application registered with the Microsoft identity platform.
44
services: active-directory
55
author: cilwerner
66
manager: CelesteDG
@@ -9,10 +9,11 @@ ms.service: active-directory
99
ms.subservice: develop
1010
ms.topic: how-to
1111
ms.workload: identity
12-
ms.date: 07/28/2022
12+
ms.date: 06/21/2023
1313
ms.author: cwerner
1414
ms.custom: aaddev
1515
ms.reviewer: marsma, aragra, lenalepa, sureshja
16+
1617
#Customer intent: As an application developer, I want to know how to remove my application from the Microsoft identity registered.
1718
---
1819

@@ -22,12 +23,13 @@ Enterprise developers and software-as-a-service (SaaS) providers who have regist
2223

2324
In the following sections, you learn how to:
2425

25-
* Remove an application authored by you or your organization
26-
* Remove an application authored by another organization
26+
- Remove an application authored by you or your organization
27+
- Remove an application authored by another organization
2728

2829
## Prerequisites
2930

30-
* An [application registered in your Azure AD tenant](quickstart-register-app.md)
31+
- One of the following roles: Global Administrator, Cloud Application Administrator, Application Administrator, or owner of the service principal.
32+
- An [application registered in your Azure AD tenant](quickstart-register-app.md)
3133

3234
## Remove an application authored by you or your organization
3335

@@ -38,10 +40,10 @@ Applications that you or your organization have registered are represented by bo
3840
3941
To delete an application, be listed as an owner of the application or have admin privileges.
4042

41-
1. Sign in to the <a href="https://portal.azure.com/" target="_blank">Azure portal</a>.
43+
1. Sign in to the [Azure portal](https://portal.azure.com) and sign in using one of the roles listed in the prerequisites.
4244
1. If you have access to multiple tenants, use the **Directory + subscription** filter :::image type="icon" source="./media/common/portal-directory-subscription-filter.png" border="false"::: in the top menu to select the tenant in which the app is registered.
4345
1. Search and select the **Azure Active Directory**.
44-
1. Under **Manage**, select **App registrations** and select the application that you want to configure. Once you've selected the app, you'll see the application's **Overview** page.
46+
1. Under **Manage**, select **App registrations** and select the application that you want to configure. Once you've selected the app, you see the application's **Overview** page.
4547
1. From the **Overview** page, select **Delete**.
4648
1. Read the deletion consequences. Check the box if one appears at the bottom of the pane.
4749
1. Select **Delete** to confirm that you want to delete the app.

articles/active-directory/develop/howto-restore-app.md

Lines changed: 20 additions & 17 deletions
Original file line numberDiff line numberDiff line change
@@ -9,7 +9,7 @@ ms.service: active-directory
99
ms.subservice: develop
1010
ms.topic: how-to
1111
ms.workload: identity
12-
ms.date: 07/28/2022
12+
ms.date: 06/21/2023
1313
ms.author: cwerner
1414
ms.reviewer: arcrowe
1515
ms.custom: aaddev
@@ -24,7 +24,8 @@ You can view your deleted applications, restore a deleted application, or perman
2424

2525
Neither you nor Microsoft customer support can restore a permanently deleted application or an application deleted more than 30 days ago.
2626

27-
## Required permissions
27+
## Prerequisites
28+
2829
You must have one of the following roles to permanently delete applications.
2930

3031
- Global administrator
@@ -38,36 +39,38 @@ You must have one of the following roles to restore applications.
3839
- Global administrator
3940
- Application owner
4041

41-
### View your deleted applications
42+
## View your deleted applications
43+
4244
You can see all the applications in a soft deleted state. Only applications deleted less than 30 days ago can be restored.
4345

44-
#### To view your restorable applications
45-
1. Sign in to the [Azure portal](https://portal.azure.com/).
46-
2. Search and select **Azure Active Directory**, select **App registrations**, and then select the **Deleted applications (Preview)** tab.
46+
To view your restorable applications:
47+
48+
1. Sign in to the [Azure portal](https://portal.azure.com) and sign in using one of the roles listed in the prerequisites.
49+
1. Search and select **Azure Active Directory**, select **App registrations**, and then select the **Deleted applications** tab.
4750

4851
Review the list of applications. Only applications that have been deleted in the past 30 days are available to restore. If using the App registrations search preview, you can filter by the 'Deleted date' column to see only these applications.
4952

5053
## Restore a recently deleted application
5154

52-
When an app registration is deleted from the organization, the app is in a suspended state, and its configurations are preserved. When you restore an app registration, its configurations are also restored. However, if there were any organization-specific settings in **Enterprise applications** for the application's home tenant, those won't be restored.
55+
When an app registration is deleted from the organization, the app is in a suspended state, and its configurations are preserved. When you restore an app registration, its configurations are also restored. However, if there were any organization-specific settings such as permission consents and user and group assignments for a certain organization stored in **Enterprise applications** for the application's home tenant, they're restored alongside the app registration.
5356

54-
This is because organization-specific settings are stored on a separate object, called the service principal. Settings held on the service principal include permission consents and user and group assignments for a certain organization; these configurations won't be restored when the app is restored. To learn how to restore the service principal with its previous configurations, see [Restore a recently deleted enterprise application](../manage-apps/restore-application.md).
57+
To restore an application:
5558

56-
57-
### To restore an application
58-
1. On the **Deleted applications (Preview)** tab, search for and select one of the applications deleted less than 30 days ago.
59-
2. Select **Restore app registration**.
59+
1. Go to the **Deleted applications** tab. Search for and select one of the applications deleted less than 30 days ago.
60+
1. Select **Restore app registration**.
6061

6162
## Permanently delete an application
62-
You can manually permanently delete an application from your organization. A permanently deleted application can't be restored by you, another administrator, or by Microsoft customer support. However, this does not permanently delete the corresponding service principal. A service principal cannot be restored without having an active corresponding application, so the service principal can be manually deleted, which is also permanent. If no action is taken the service principal will be permanently deleted 30 days after deleting the application.
6363

64-
### To permanently delete an application
64+
You can manually permanently delete an application from your organization. A permanently deleted application can't be restored by you, another administrator, or by Microsoft customer support. However, this doesn't permanently delete the corresponding service principal. The service principal can't be restored without having an active corresponding application, so the service principal can be manually deleted, which is also permanent. If no action is taken, the service principal will be permanently deleted 30 days after deleting the application.
65+
66+
To permanently delete an application:
6567

66-
1. On the **Deleted applications (Preview)** tab, search for and select one of the available applications.
67-
2. Select **Delete permanently**.
68-
3. Read the warning text and select **Yes**.
68+
1. Go to the **Deleted applications** tab. Search for and select one of the available applications.
69+
1. Select **Delete permanently**.
70+
1. Read the warning text and select **Yes**.
6971

7072
## Next steps
73+
7174
After you've restored or permanently deleted your app, you can:
7275

7376
- [Add an application](quickstart-register-app.md).

articles/active-directory/manage-apps/delete-application-portal.md

Lines changed: 5 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -8,7 +8,7 @@ ms.service: active-directory
88
ms.subservice: app-mgmt
99
ms.topic: how-to
1010
ms.workload: identity
11-
ms.date: 07/28/2022
11+
ms.date: 06/21/2023
1212
ms.author: jomondi
1313
ms.reviewer: sureshja
1414
zone_pivot_groups: enterprise-apps-all
@@ -21,7 +21,7 @@ ms.custom: enterprise-apps
2121

2222
In this article, you learn how to delete an enterprise application that was added to your Azure Active Directory (Azure AD) tenant.
2323

24-
When you delete and enterprise application, it will be held in a suspended state in the recycle bin for 30 days. During the 30 days, you can [Restore the application](restore-application.md). Deleted items are automatically hard deleted after the 30-day period. For more information on frequently asked questions about deletion and recovery of applications, see [Deleting and recovering applications FAQs](delete-recover-faq.yml).
24+
When you delete and enterprise application, it's held in a suspended state in the recycle bin for 30 days. During the 30 days, you can [Restore the application](restore-application.md). Deleted items are automatically hard deleted after the 30-day period. For more information on frequently asked questions about deletion and recovery of applications, see [Deleting and recovering applications FAQs](delete-recover-faq.yml).
2525

2626

2727
## Prerequisites
@@ -39,7 +39,7 @@ To delete an enterprise application, you need:
3939
:::zone pivot="portal"
4040

4141
1. Sign in to the [Azure portal](https://portal.azure.com) and sign in using one of the roles listed in the prerequisites.
42-
1. In the left menu, select **Enterprise applications**. The **All applications** pane opens and displays a list of the applications in your Azure AD tenant. Search for and select the application that you want to delete. For example, **Azure AD SAML Toolkit 1**.
42+
1. In the left menu, select **Enterprise applications**. The **All applications** pane opens and displays a list of the applications in your Azure AD tenant. Search for and select the application that you want to delete. In this article, we use the **Azure AD SAML Toolkit 1** as an example.
4343
1. In the **Manage** section of the left menu, select **Properties**.
4444
1. At the top of the **Properties** pane, select **Delete**, and then select **Yes** to confirm you want to delete the application from your Azure AD tenant.
4545

@@ -130,8 +130,8 @@ Delete an enterprise application using [Graph Explorer](https://developer.micros
130130

131131
---
132132

133-
1. Record the ID of the enterprise app you want to delete.
134-
1. Delete the enterprise application.
133+
2. Record the ID of the enterprise app you want to delete.
134+
3. Delete the enterprise application.
135135

136136
# [HTTP](#tab/http)
137137
```http

0 commit comments

Comments
 (0)