Restricting User Access to Umango in Azure
By default, when you create an Azure App Registration for use with Umango authentication, any user within your Microsoft Entra ID (formerly Azure AD) tenant can authenticate. To restrict access to specific departments, teams, or individuals, you must enable User Assignment.
Step 1: Enable "Assignment Required"
This setting acts as a gatekeeper, blocking any user who hasn't been explicitly granted access to the Umango application.
- Log into the Azure Portal.
- Navigate to Microsoft Entra ID.
- In the left-hand menu, select Enterprise applications (Note: This is different from "App registrations").
- Search for and select your Umango Authentication app.
- Under the Manage section, click on Properties.
- Locate Assignment required? and toggle it to Yes.
- Click Save at the top of the page.
Step 2: Assign Specific Users or Groups
Once assignment is required, you must define the list of authorized users or security groups.
- While still in the Enterprise Application view for Umango, select Users and groups from the left menu.
- Click + Add user/group at the top.
- Under Users and groups, click the "None Selected" link.
- Search for the individual users or the Security Groups you wish to authorize.
- Click Select, then click Assign at the bottom.
Pro Tip: Using Groups is the most efficient way to manage access. If a user is added to a synced "Marketing" or "HR" group in the future, they will automatically gain access to Umango without further configuration in the Azure portal.
Step 3: Expected User Experience
| User Type |
Result |
| Assigned User/Group Member |
Successfully logs into the Umango Dashboard. |
| Unassigned User |
Receives a Microsoft error: "Message: AADSTS50105: The signed in user is not assigned to a role for the application..." |
This article is a supplement to the Main Azure Entra Configuration Guide.
Related Articles
Umango Scan Actuator Troubleshooting
This article walks you through diagnosing connection problems between the Umango Scan Actuator (the small desktop app that talks to your scanner) and the Umango web application running in your browser. If you're on a personal or home computer, start ...
Resetting The Umango Authentication Method
Overview If the Authentication Method in Umango is misconfigured (e.g., an incorrect LDAP or MFA setup), administrators may find themselves locked out of the system. By removing the AuthenticationMethod entry from the database, Umango reverts to its ...
Changing SNMP Settings in Umango
Umango uses SNMP (Simple Network Management Protocol) to discover and interact with supported multifunction devices (MFDs) on the network. These settings can be customized via the Advanced Configuration Screen. Default SNMP Settings By default, ...
Umango Installation Issue - SQL Server 2017 Compatibility
Overview Umango installations include Microsoft SQL Server 2017 Express as a prerequisite for database functionality. In some environments, the installation of SQL Server 2017 Express may fail, preventing Umango from installing successfully. This ...
Installing Umango Silently Using Command Line Properties
This article explains how to install Umango without user interaction by running the installer from the command line and supplying MSI properties. The Umango installer is distributed as an EXE bootstrapper that contains an MSI package. For silent ...