Blocking Azure AD Permissions

Block Azure AD permissions granted to an app or group of apps

If you no longer want to integrate Azure AD with an app or group of apps, you can block the permissions to effectively disconnect Azure AD from the specified apps. Blocking permissions disconnects Azure AD from the apps but does not delete or revoke the permissions in Azure AD. To delete the permissions in Azure AD, you must delete the associated enterprise application (see step 3).


Blocking Azure AD permissions can negatively impact the functionality of associated apps. Blocking permissions can limit the insights provided by associated apps, and you may lose the ability to perform account-related actions, such as mobile device authentication, disabling user accounts, and forcing password reset.

  1. Click the Block permissions link below the Status column.
  2. Click Block.
  3. (Optional) To delete the permissions in Azure AD:
    1. Copy the application ID.
    2. In Azure AD, use the application ID to locate the enterprise application associated with the app or group of apps.
    3. Delete the enterprise application.
    For more information, see the Azure AD documentation.

    To unblock permissions, click Grant permissions.