They are:Īn MPN ID for a valid Microsoft Partner Network account that has completed the verification process. There are a few pre-requisites for publisher verification, some of which will have already been completed by many Microsoft partners. A warning will be displayed on the consent screen informing users that these apps are risky and are from unverified publishers.
This will apply to apps that are registered after November 8th 2020, use OAuth2.0 to request permissions beyond basic sign-in and read user profile, and request consent from users in different tenants than the one the app is registered in. Starting in November 2020, end-users will no longer be able to grant consent to most newly registered multi-tenant apps without verified publishers if risk-based step-up consent is enabled. Smoother enterprise adoption- admins can configure user consent policies, with publisher verification status as one of the primary policy criteria. Improved branding- a “verified” badge appears on the Azure AD consent prompt, Enterprise Apps page, and additional UX surfaces used by end users and admins. Increased transparency and risk reduction for customers- this capability helps customers understand which apps being used in their organizations are published by developers they trust. Publisher verification provides the following benefits: These apps can sign users in using OpenID Connect, or they may use OAuth 2.0 to request access to data using APIs like Microsoft Graph. This feature is primarily for developers building multi-tenant apps that leverage OAuth 2.0 and OpenID Connect with the Microsoft identity platform. When an application is marked as publisher verified, it means that the publisher has verified their identity using a Microsoft Partner Network account that has completed the verification process and has associated this MPN account with their application registration.Ī blue "verified" badge appears on the Azure AD consent prompt and other screens: