How do I pre-configure my Azure AD Permissions for end users

Enterprise Admin Pre-Approval

A Microsoft O365 administrator with permissions to add and manage enterprise applications and their permissions can pre-approve the Colligo Applications for use inside their enterprise.
This has the added benefit that end users are not required to read and accept permissions themselves.

This behaviour is particularly beneficial if as an enterprise you have used the Microsoft settings to control which enterprise applications users can add and also changed the Microsoft defaults so that end users cannot accept permissions themselves.

There are two suggested methods which can be used for Enterprise pre-approval

  • Administrator Login to the Colligo Applications
  • Direct URL acceptance of the permissions

Step 1
Colligo Administration Console Permissions

The first step of this process is to ensure that the Colligo Management Console can read your users basic information. This is how we license users and check they have access permissions to the application and to which groups they belong to.

As a tenant admin with appropriate permissions, you can simply try to authenticate to the Colligo Console. This process does not require you to have an o365 license for this user, just that the Microsoft Azure AD user has enough permission as it is the acceptance of the Microsoft permissions pop-up that stores the permissions record in the Microsoft Azure AD Systems.

Access the admin console using the link provided by the Colligo team and you will be prompted to allow permission and can accept on behalf of the organisation.

Alternative Approach
If you cannot for some reason log into the Colligo Administration Application, then it is also possible to use the direct permissions URL to trigger the permissions dialogue from Microsoft. 

Colligo Admin Console Permissions Dialogue Trigger Link

Step 2

Administrator Login to the Colligo Applications

Each Colligo Application requires it's own set of permissions and is registered in your Tenant Enterprise Applications list directly.

Simplest Method

The simplest method is probably to access the Colligo Applications once they have been 'deployed' to your admin user. On first login to the applications as an admin user, you will be asked to confirm the permissions and you will also be able to 'accept on behalf of your organisation'.

This method is probably the simplest, but will only work if your tenant admin is licensed for the Microsoft services that it needs in order to use the Colligo Applications.

Alternative method for non licensed Admins and tenants restricted so end users cannot provide approval.

As a tenant admin with permissions, access each of the URLs below for the application you will be using. Each Application will need to be done separately and will create an Enterprise Applications entry in your Azure AD, with the permissions recorded as delegated, approved by the tenant admin.

Colligo Email Manager (EMO)

Colligo Office Connect (COC)

Colligo Content Manager (CCM)

Colligo Content Manager for Teams (CCM-Teams)

Once the permissions for the applications you are using have been pre-approved, then end users should not be prompted for any further acceptance.

Did you find it helpful? Yes No

Send feedback
Sorry we couldn't be helpful. Help us improve this article with your feedback.
Have documentation feedback? Send us an email