You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/active-directory/manage-apps/create-service-principal-cross-tenant.md
+13-11Lines changed: 13 additions & 11 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -24,15 +24,15 @@ In this article, you'll learn how to create an enterprise application in your te
24
24
25
25
Before you proceed to add the application using any of these options, check whether the enterprise application is already in your tenant by attempting to sign in to the application. If the sign-in is successful, the enterprise application already exists in your tenant.
26
26
27
-
If you have verified that the application isn't in your tenant, proceed with any of the following ways to add the enterprise application to your tenant using the appId
27
+
If you have verified that the application isn't in your tenant, proceed with any of the following ways to add the enterprise application to your tenant.
28
28
29
29
## Prerequisites
30
30
31
31
To add an enterprise application to your Azure AD tenant, you need:
32
32
33
33
- An Azure AD user account. If you don't already have one, you can [Create an account for free](https://azure.microsoft.com/free/?WT.mc_id=A261C142F).
34
34
- One of the following roles: Global Administrator, Cloud Application Administrator, or Application Administrator.
35
-
- The client ID of the multi-tenant application.
35
+
- The client ID (also called appId in Microsoft Graph) of the multi-tenant application.
36
36
37
37
38
38
## Create an enterprise application
@@ -67,24 +67,26 @@ where:
67
67
:::zone-end
68
68
:::zone pivot="ms-graph"
69
69
70
-
From the Microsoft Graph explorer window:
70
+
You can use an API client such as [Graph Explorer](https://aka.ms/ge) to work with Microsoft Graph.
71
71
72
-
1. To create the enterprise application, insert the following query:
72
+
1. Grant the client app the *Application.ReadWrite.All* permission.
73
+
74
+
1. To create the enterprise application, run the following query. The appId is the client ID of the application.
73
75
74
76
```http
75
-
POST /servicePrincipals.
76
-
```
77
-
1. Supply the following request in the **Request body**.
78
-
77
+
POST https://graph.microsoft.com/v1.0/servicePrincipals
78
+
Content-type: application/json
79
+
79
80
{
80
81
"appId": "fc876dd1-6bcb-4304-b9b6-18ddf1526b62"
81
82
}
82
-
1. Grant the Application.ReadWrite.All permission under the **Modify permissions** tab and select **Run query**.
83
+
84
+
```
83
85
84
-
1. To delete the enterprise application you created, run the query:
86
+
1. To delete the enterprise application you created, run the query.
0 commit comments