Skip to content
English - Australia
More support
Contact us
  • There are no suggestions because the search field is empty.

Using EntraID security groups to assign access control roles in SWOOP

(This article applies to SWOOP for SharePoint and SWOOP for Viva Engage.)

The purpose of this article is to enable access and management of permission in SWOOP using your Entra ID security groups instead of controlling this within the SWOOP user-interface. This is done by locating the relevant SWOOP app in 'Enterprise Applications', and then adding relevant security groups to the SWOOP roles.

The instructions below applies when the SWOOP multi-tenant application is used. If you have set up a single-tenant application in Viva Engage you will need add application roles in order for these to be assigned to groups (refer to Step 4 in Register Single-Tenant App for Viva Engage). 

Prerequisites: Before you start ensure you have either created EntraID security groups or have identified existing ones that you will be using.

Step 1 - Find the SWOOP enterprise application

In the Azure Portal click EntraID and then go do Enterprise Applications. Now search for "SWOOP Analytics", and you will see one of the following:

  • SWOOP Analytics General Login (may be named differently if a Single Tenant App): This is for SWOOP for Viva Engage
  • SWOOP Analytics for SharePoint (may be named differently if a Single Tenant App): This is for SWOOP for SharePoint

Click on the relevant entry:

Screenshot 2025-12-16 at 13.12.57.png

Step 2 - Click 'Users and Groups'

Click  Users and Group, and then click +Add user/group.

Screenshot 2025-12-16 at 13.13.36.png

Step 3 - Assign group to role

Under 'Users and Groups', click 'None Selected' to select a security group that you want to set permissions for:

Screenshot 2025-12-16 at 13.31.27.png

Under 'Select a role', click 'None Selected' which will then show the list of available roles for the SWOOP application:

Screenshot 2025-12-16 at 13.14.54.png

Repeat these steps to set permissions for all relevant groups.

Step 4 - change access settings in SWOOP

The final step is to change the access permissions in SWOOP to 'listed below'. Click Admin / Access Control and change the toggle. Then click 'Apply Changes'.

Note: If any users are listed in the table these will bypass any permissions set via EntraID, so it is important to ensure that if any users are listed in this table that this is reviewed. It might be safe to have at least one system admin listed (as a backup).

You are now done, and access to SWOOP is controlled via the EntraID security groups.