This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(208, 1%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESD%3C/text%3E%3C/svg%3E)
I have an azure application, that need delegated permissions of a user, and I am using /authorise API to get the auth code and there by token.
https://login.microsoftonline.com/common/oauth2/v2.0/authorize?client='XXXX'&scope='XXXX'&redirect_uri='XXXXX'&response_type='code'&state='XXXX'
Now the issue is, if admin consent settings is set as No, when the users authenticates, we are getting the callback with auth code to the provided redirect url.
But when it is set to yes, the consent goes to admin and after the admin approves, user has to again authenticate.
Is there any better to improve the experience?
One more issue with this is, I can't use consent=prompt, as it will always lead to admin granting the permissions to a user.
You can Enable the admin consent workflow.
Then selected users who will receive email notifications for requests.
Then, responsible person need to Review and take action on admin consent requests
If you'd like to provide same permissions for all users in organization, you need to Grant tenant-wide admin consent in Enterprise apps pane.
Best regards,
Aleksandr
If the response is helpful, please click "Accept Answer" and upvote it.