Skip to main content

Assign Claims Mapping Policies to Entra Applications

As an administrator, you can assign a claims mapping policy to one or more Microsoft Entra applications, enabling the defined user claims to be passed to those applications during authentication.

note

You must have an existing claims mapping policy before you can assign it to an application. See Create a Claims Mapping Policy for instructions.

What You'll Need

RequirementDescription
Workflow AccessYou must have permission to run the UpdateAzAppClaimsMappingPolicyAssignments workflow.
Policy PermissionsYou must have access to view Claims Mapping Policies.
Existing PolicyA claims mapping policy must exist.
Azure ApplicationThe target Azure application must be registered in EmpowerID.

Steps to Assign Claims Mapping Policies to Azure Apps

  1. Navigate to the portal for the Resource Admin app in your environment.
  2. Log in using your credentials.
note

If you don't know the direct URL to Resource Admin, contact your EmpowerID administrator.

  1. From the dropdown menu, choose Applications.
  2. Under Filters, select Claims Mapping Policies.
  3. Search for the policy you want to update.
  4. Click the Details button on the record returned for the policy. Claims Mapping Policy Details Button This opens the Overview screen for the policy, where you can view details and perform actions. Claims Mapping Policy Overview

To assign a claims mapping policy to an Azure application:

  1. On the policy Overview screen, click the Assign/Unassign Applications button. Assign or Remove Claims Mapping Policy Button This initiates the UpdateAzAppClaimsMappingPolicyAssignments workflow and opens the Assignable Applications step. Add Claims Mapping Policy Assignments Find Application
  2. In the lookup, search for the target application.
  3. Check the box next to the application name to select it. Add Claims Mapping Policy Assignments Select Application
  4. Repeat steps 8 and 9 to select additional applications as needed.
  5. When finished, click Next to proceed to the Summary step.
  6. Review the summary and click Submit to apply the changes or click Back to return to the Assignable Applications step.
note

Returning to the Assignable Applications step will clear your selected applications and require reselecting applications.

A confirmation message appears once the claims mapping policy has been successfully assigned to the selected Azure application(s).

What Happens Next

  • The claims mapping policy is applied to the selected application(s).
  • Claims defined in the policy are included in tokens issued to those applications.
  • Changes take effect the next time a token is issued.
  • All assignments are logged in EmpowerID's audit trail.