Part of AppConfig² Suite

AppConfig — Full Microsoft Entra™ App Management

Ensure safe application testing, configuration changes, token decoding, and in-depth app analysis through embedded Graph Explorer.

See It in Action
AppConfig dashboard interface screenshot

Why AppConfig?

The Azure Portal is good for basic app tasks, but deep troubleshooting means switching between Fiddler, Postman, jwt.ms, and the portal — jumping back and forth for hours. AppConfig replaces that entire toolchain with a single, purpose-built interface that has safety guardrails built in.

No Toolchain Required

Test OAuth flows, decode tokens, inspect claims, and configure settings — without Fiddler, Postman, jwt.ms, or multiple portal blades.

Safe Configuration Changes

Every configuration change is preceded by an automated backup. If something breaks, a one-click restore brings your app back to its previous state.

End-to-End in One Interface

Select an app, test authentication, inspect the token, adjust configuration, and verify the result — the complete loop without leaving the tool.

How It Works

1. Sign in with Microsoft Entra ID

Use your Microsoft Entra ID account to sign in to the tool.

2. Test different app configurations

Change Redirect URIs, add custom claims, validate tokens and much more.

3. Restore your app's configuration

You can always restore your app's original configuration using automated backups.

Who is AppConfig for?

Purpose-built for teams who need full control over Microsoft Entra ID app registrations.

Level 3 Support

Troubleshoot complex application issues with a single tool — no Fiddler, no separate token decoder, no portal context-switching.

Developers

Test OAuth2/OIDC authentication flows, validate token claims, and iterate on Entra ID integrations end-to-end.

IT Administrators

Manage app registrations, configure permissions, test flows, and access portal deep-links — all in one interface.

Security Engineers

Validate authentication configurations and review app settings against organizational policies.

Key Features

Full-stack Entra ID app management — testing, configuration, and analysis in one tool.

Testing & Analysis
Test Authentication Flows

Validate OAuth2/OIDC authentication flows and token responses end-to-end, directly in the browser.

Token Analysis & Decoding

Decode and inspect OAuth and OIDC tokens with real-time claims analysis and annotation.

Troubleshooting Diagnostics

Identify misconfigured redirect URIs, missing permissions, and broken authentication flows directly in the browser.

Configuration
Configure Redirect URIs

Add or remove redirect URIs on the fly to troubleshoot authorization and redirect issues.

Claims Mapping Policies

Create, edit, and assign claims mapping policies to customize token content for your apps.

App Roles & Permissions

Configure application roles and API permissions with purpose-built management tools.

Operations & Safety
Backup & Restore

Automated backups before every configuration change with one-click restore capabilities.

Embedded Graph Explorer

Analyze app configuration with an integrated Graph API explorer — execute queries without leaving the tool.

Conditional Access Insights

View all conditional access policies applied to your applications in a single, unified view.

Security-First Design

AppConfig is a write-capable tool operating on live Entra ID app registrations. Every security decision was made with that risk in mind — from MSAL PKCE authentication to automated backup-before-change protection.

Authentication & Authorization
  • MSAL Authorization Code Flow with PKCE — no implicit flow, no client secrets in the browser
  • Single-tenant enforcement — only accounts from the configured Entra ID tenant can sign in
  • sessionStorage cache — sessions are isolated per browser tab, not shared across tabs
  • JIT scope consent — Graph permissions are requested on demand per operation, not upfront
OWASP Client-Side Controls
  • X-Frame-Options: DENY — blocks clickjacking attacks
  • X-Content-Type-Options: nosniff — prevents MIME-type sniffing
  • Referrer-Policy: strict-origin-when-cross-origin
  • Permissions-Policy — restricts camera, microphone, geolocation
  • Security headers applied at SWA layer — via staticwebapp.config.json
Write Operation Guardrails
  • Automated backup before every change — full app configuration snapshot taken before any PATCH or POST
  • One-click restore — revert to any previous backup instantly
  • Confirmation dialogs on every write (PATCH / POST / DELETE) — no silent mutations
  • No client-side secret storage — no tokens or secrets written to localStorage
Infrastructure & Data Residency
  • Azure Static Web Apps + Azure Functions — supports both delegated and client credentials flows
  • All requests go to Microsoft Graph — your data never leaves Microsoft's infrastructure
  • No telemetry or third-party analytics beyond what Azure SWA platform collects
  • Short-lived response caching — Graph responses cached in-memory with 5–30 min TTLs only

See AppConfig² Logo in Action

Screenshots

Dashboard home view

Dashboard Home View
Applications filtering interface

Applications Filtering
Testing selected app screen

Testing Selected App
Authenticate As - first step

Authenticate As - First Step
Authenticate As - second step

Authenticate As - Second Step
AppConfig tools overview

Advanced Tools
AppConfig actions list

App Management Actions
Graph Explorer interface

Graph Explorer
Auth flow tester screen

Auth Flow Tester

Demo Videos

UI Introduction

Customizing access tokens

Now Available on Azure Marketplace

Get AppConfig² directly from Azure Marketplace with seamless integration into your Azure environment and comprehensive IAM capabilities.

Azure Integration

Native Azure billing and subscription management

Enterprise Ready

Enterprise-grade security built on Microsoft's trusted Azure infrastructure

Professional Support

Dedicated technical support and documentation

Instant Deployment

Deploy directly from Azure Marketplace in minutes

AZURE MARKETPLACE

AppConfig²

1-Month

FREE TRIAL

Start with a full-featured 1-month trial for operations teams, IAM professionals, developers and IT administrators

  • Full access to all premium features
  • Azure native billing and management
  • Professional technical support
  • Enterprise-grade security and compliance
  • No setup fees or commitments
View in Azure Marketplace Start your free trial today

About AppConfig

Specialized Identity and Access Management tool designed by IAM professionals for developers, support teams, and IT administrators working with Microsoft Entra ID.

IAM Focused

Built exclusively for Microsoft Entra ID workflows

Significantly Faster

Reduce troubleshooting from hours to minutes

Safe Testing

Automated backups before every configuration change

Practitioner Built

Tools designed by IAM engineers for IAM engineers

Ready to Simplify Your Entra ID Troubleshooting?

Get AppConfig as part of the AppConfig² Suite on Azure Marketplace

Get Started on Azure Marketplace Explore the Full Suite

Have Questions? Get in Touch!

Want a free consultation or early access? Reach out to us today.


Contact Us Request a Feature