Hello @Arsen, one Question here, when we create a multi tenant application and let user sign in to our website , We can request for permissions listed in our application with '/.default' scope that will automatically reflects granted permissions in the client's Enterprise Applications. but the service principal requires to be in specific role like let's say 'Application Administrator' .. I could only think of one way and that is to seek permission such as 'Directory.AccessAsUser' and make all necessary changes the clients tenant after successful consent. would you suggest any alternative?
![เปิด อาณาจักร หมื่นล้าน "สาระตั้ม" l [Nickynachat]](http://i.ytimg.com/vi/3XE0nPF4YkQ/mqdefault.jpg)
Hello @Arsen, one Question here, when we create a multi tenant application and let user sign in to our website , We can request for permissions listed in our application with '/.default' scope that will automatically reflects granted permissions in the client's Enterprise Applications.
but the service principal requires to be in specific role like let's say 'Application Administrator' ..
I could only think of one way and that is to seek permission such as 'Directory.AccessAsUser' and make all necessary changes the clients tenant after successful consent.
would you suggest any alternative?
p̾r̾o̾m̾o̾s̾m̾ 🤔
Hi Meira! Can you please clarify the question? :)