Yes, when a user or admin consents to a multi-tenant application, a service principal (enterprise app) is created in your tenant. Permissions granted within your tenant are granted to this service principal.
Will Enterprise Applications ever just "show up" upon consent?
We have a couple of Enterprise Applications - "Zoom1" and "Zoom2" we'll call them - that we believe might have been auto generated upon a user's consent when logging in with their corporate email. Is that something that Azure does, or is our imagination getting the best of us?
-Alex
2 additional answers
Sort by: Most helpful
-
Miguel Alex Cantu 21 Reputation points
2019-11-18T21:10:22.843+00:00 If anyone is curious. There is some more information about this behavior here:
-
MrAzureAD 81 Reputation points
2019-11-21T05:09:27.253+00:00 Actually, user consent should be disabled by default and enabled only if you know what you are doing. At least our users would not read nor understand the permission screen and consent to any application. This opens the door to data leakage. The admin consent experience has some issues, but there were some recent improvements that make it more usable.
Just my 2ct,
MrAzureAD