Application roles define an aiWARE user’s authorization level in a given application. The aiWARE application role also defines which aiWARE application page a user will be directed to upon successful authentication. For example, if the aiWARE user is granted the viewer role for the aiWARE desktop application, then when the user successfully authenticates, the user will be directed to the aiWARE desktop application.
It is possible to create Entra ID roles, apply those roles to an Entra ID user, and then map those roles during SCIM provisioning so that the corresponding aiWARE user is granted the desired aiWARE application roles. This prevents the need to manually apply aiWARE application roles.
This topic describes the process of creating Entra ID app roles.
- Go to Microsoft Entra ID.
- In the left panel, select App registrations. The App registrations page appears.
- Select the app you want to modify roles for. An example is the app you created in Set up a Microsoft Entra ID Application and OpenID.
- In the left panel, select App roles.
- At the top of the main panel, select + Create app role. The Create app role panel appears on the right.
- In the Create app role panel, enter a Display name, Value, and Description. The values of Display name and Value must start with aiware_
- Make sure Do you want to enable this app role? is checked.
- Select the Users/groups radio button, then select Apply.
Next step
Create Entra ID app role attribute mapping
