Provides an application permission scope for other Azure Active Directory activities. All activities executed using an application scope are completed on behalf of an application.
- DisplayName - The display name of the activity.
- ClientId - Establishes the client (application) ID. This field supports only strings and
- ClientSecret - Establishes the client (application) secret. A client's secret is the equivalent of a session authorization token. This field supports only
- TenantId - Establishes the directory (tenant) ID. This field supports only strings and
Here is more information about how to get the Tenant ID, Client ID, and Client Secret.
- Private - If selected, the values of variables and arguments are no longer logged at Verbose level.
Azure Active Directory can be accessed through Microsoft Graph which has two types of permissions, Delegated permissions and Application permissions.
- Application permissions are used by apps that are not requiring the user to be signed in (background services or daemons). All permissions need to be consented by an administrator.
Activities using Azure AD Delegated Scope are always executed on behalf of an authenticated user, while activities using Azure AD Application Scope are executed on behalf of an application.
Updated 4 months ago