Try it
How can we help?

Search for answers or browse articles about Sintel Apps

< All Topics
You are here:

Configuring External Access Permissions

Posted
Updated
ByAmy Dermody
0 out of 5 stars
5 Stars 0%
4 Stars 0%
3 Stars 0%
2 Stars 0%
1 Stars 0%

This guide explains how permissions work in Sintel Apps following the update introduced in version 1.0.3, and what (if anything) you need to do.

 

Step 1: Understand How Access Is Structured

 

Sintel Apps now clearly separates standard internal use from external or anonymous access.
This gives tenant administrators more control and improves overall security.

Core Sintel Apps (Standard Use)

This is the default setup and applies to most customers.

  • The main Sintel Apps application uses delegated permissions only

  • These permissions must be approved once by a tenant administrator

  • Users can only perform actions they are already allowed to do in Microsoft 365

  • The app never elevates or bypasses user permissions

External or Anonymous Access (Optional)

If you plan to allow external users or anonymous access, this is handled separately.

  • A second, optional application is used: Sintel Apps External

  • This is only required if external or anonymous access is needed

  • Approval must be granted by a tenant administrator

  • If you don’t need external access, you can safely ignore this step

Step 2: Approve Standard Sintel Apps Access

To enable normal internal use:

  1. A tenant administrator signs in when prompted
  2. The administrator approves the requested Sintel Apps permissions
  3. Users can then access Sintel Apps based on their existing Microsoft 365 rights

 

  • No extra privilege is granted
  • No tenant-wide access beyond what users already have

 

 

Step 3: Decide If You Need External or Anonymous Access

External access is completely optional.

Ask yourself:

  • Do people outside your organisation needto be able to submit forms?

  • Do you plan to share anonymous access links?

If no, you can stop here — no further setup is required.

If yes, continue to Step 4.

Step 4: Enable External or Anonymous Access

To enable external access:

  1. A tenant administrator opens the admin consent link below
  2. The administrator approves the Sintel Apps External application

Admin consent link:

https://login.microsoftonline.com/organizations/adminconsent?client_id=4d5a0f9f-7513-4bf1-86f7-c2c3f870f726

Once approved:

  • External and anonymous access features become available

  • Internal user permissions remain unchanged

  • External access can be controlled or removed at any time

 

Step 5: Ongoing Security and Control

With this permissions model:

  • Internal users stay limited to their normal Microsoft 365 permissions

  • External access is clearly separated and intentionally enabled

  • Tenant administrators retain full visibility and control

  • No unnecessary high-level or tenant-wide permissions are required

This approach improves security while giving you flexibility when external or anonymous access is required.

 

Was this article helpful?
0 out of 5 stars
5 Stars 0%
4 Stars 0%
3 Stars 0%
2 Stars 0%
1 Stars 0%
5
Please Share Your Feedback
How Can We Improve This Article?
Table of Contents