Skip to main content

Verify Permissions to Execute Workflows - EntraID (ex-Azure AD) - Workflow Template

Workflow that can be used to verify users have permissions to run a specific workflow by Id or name and also check group membership.

Updated over a year ago

This Torq workflow template assists with Identity and Access Management by verifying if a user or their group has the necessary permissions to execute a specific workflow in an organization. This is particularly useful for businesses using Microsoft Azure AD, as it cross-references provided workflow names or IDs with user details and group memberships to ensure secure access control and compliance with company policies. If a match is not found, a denied verdict is issued, providing a systematic and automated approach to workflow permission management.

Take Me to the Template

Use Cases

Example , Identity and Access Management

Workflow Breakdown

  1. Provide the workflow with the users email and optionally the workflow name or Id

  2. Filter the rules that match the details provided for workflow name and id

  3. Verify the user matches the set of rules as defined by workflow name or Id

  4. If no user match is found, continue to check for a match in a group

  5. If no match for a user or group is found, send a denied verdict.

Vendors

Utils, Microsoft Azure AD, Microsoft 365

Workflow Output

Verdict if the user is permitted to execute the workflow as defined in the workflow list.

Related Articles
Azure
Verify Permissions to Execute Workflows - Google Cloud Identity - Workflow Template
Verify Permissions to Execute Specific Workflows - Okta - Workflow Template
Disable and Contain a Specific User in Entra ID (ex-Azure AD) - Workflow Template
Just-in-time access to Group Membership in Entra ID (ex-Azure AD) - Workflow Template
Did this answer your question?