Need Admin Approval Popup When Using Microsoft Teams Scope Activity

How to handle when there is a need for Admin Approval popup when using Microsoft Teams Scope Activity?

Issue Description: Need Admin Approval popup as shown below when using Microsoft Teams Scope Activity

Resolution :

UiPathStuioO365App application requires one or more permissions which only Global Admin can consent for. There are some permissions for which standard users can provide consent.

If the application needs high-level permission, the easiest way to allow the service account to connect is to enable user access to Enterprise apps. From the Admin portal, go to Admin Centers > Azure AD > Users and Groups > User Settings then make sure "Users can consent to apps accessing company data on their behalf" is enabled.

  • If this option is set to yes, then non-admin users may register custom-developed applications for use within this directory.
  • If this option is set to no, then only users with an administrator role may register these types of applications.

![](upload://1Ha82Rq2chBURCnAmbVqIJr3Th7.png)

Note: The above screenshot may vary depending upon the version being used.

For more controlled access (the above method allows users to add any apps), I used the following method (as a Microsoft admin). This allows the best of both worlds - users can access and Admin knows what apps they are giving permission to!

MICROSOFT ADMIN

  1. Microsoft Admin Centre > Azure Active Directory Administration

  2. Users > User Settings

  3. Enterprise Applications > click on “Manage how end users launch and view their applications”
    image

  4. Look under the ‘Admin consent requests’ area
    a. Check “Users can request admin consent to apps they are unable to consent to” to YES
    b. enter the admin user or group
    image

  5. Save

USER
6. The original user then needs to try and log into cloud.uipath.com with Microsoft sign on. Now, they will be presented with a screen which asks them for why they want access to the app.

  • This gets sent to the Microsoft admin for approval

MICROSOFT ADMIN
7. The Admin gets an email and in a few clicks can provide access to the App via Azure.

  • To confirm, check that the App shows up on the Azure Active Directory - Enterprise applications window
    image

USER
8. Login at cloud.uipath.com
NOTE: the needs a UiPath license and to be added to the appropriate organization. It is recommended they sign in using the email invite they received from UiPath on an incognito/private browser.

Hope this helps!!