Restrict CalendarBridge Access to Certain Microsoft 365 Users

These steps restrict which users can signup for CalendarBridge individually or be given a license on a Managed Users group plan.  If you are an admin using Managed Syncs, you want to instead follow the instructions to Restrict Domain-Wide Authorization to a Microsoft 365 Security Group. 1. Have a Microsoft 365 Global Admin authorize the CalendarBridge App. This can be done through the Microsoft 365 “Admin Consent Flow” or by the Group Admin creating a free trial and, when connecting their Calendar, check the box that says “Consent on behalf of your organization.” Note: Consenting on behalf of your organization does NOT immediately give CalendarBridge access to all calendars in your organization – each user that wants to use CalendarBridge will still need to connect their calendar before CalendarBridge can access their calendars. 2. Turn on “Assignment required” in Azure Active Directory In Azure Active directory, go to ‘Enterprise Applications.’ Click CalendarBridge in the list of applications. Click ‘Properties’ on the left menu. Set Assignment required to “Yes” Click “Save” at the top. 3. Assign users to the CalendarBridge App In the left menu, click “Users and groups” At the top click “Add user/group.” Add the users that should be permitted to user CalendarBridge. Now you can create accounts for the assigned users in the CalendarBridge Managed Users Panel Users who have not been assigned to the application in Azure Active Directory will receive the following when trying to connect their calendar: