Microsoft Word/PowerPoint:

Word/PowerPoint Video
Click to play the demo
Outlook Video
Click to play the demo
Teams Video
Click to play the demo

Action Required:
An Office 365 application update on January 11th, 2021, will require application permission re-acceptance before users can access the Office integrations

On January 11th, 2021, at 11:00 am Eastern Time, Adobe Sign will be updating the Adobe Sign for Office 365 application, which is the common application for the Word/PowerPoint, Outlook, and Teams integrations. This update is being put in place to enhance overall security across all three integrations.

After the update is completed, administrators/users will be prompted to accept a permission request for the application. This re-acceptance request is required due to a new applicationID being used. The permission set being requested is the same as the previous authentication; no additional permissions are being added.

  • There is no installation or upgrade process that users need to partake in. All that is required is re-accepting the permission request
  • The access token has a one-hour lifespan. Users that are currently authenticated when the application is updated will be prompted to re-accept the permission request when their access token expires
    • Users that are not authenticated at the time of the update will be prompted to re-accept the permission request when they next access the integration (unless an Admin has already consented for the organization)

The permission request is common to all three integrations, so users only have to re-accept the request one time and that acceptance applies to all of the Office integrations used.

The experience for users is dictated by the User consent for application settings (configured by a Global Administrator in your Microsoft Azure Portal)

Microsoft user consent options

  • Administrators:

    Office 365 Administrators will trigger the request to grant permissions when they attempt to access any one of the integrations after the update.

    Admins have the option to Consent on behalf of your organization when accepting the permission request. If this option is enabled, all users in the org are granted access, and no subsequent users will trigger the permissions request.

    If the admin accepts without checking the consent for the organization, they will enable access for just their user.

    Admin consent required - Admin view

    Caution:

    It is possible for the Office administrators to accept the permission request for their individual user, and not on behalf of the organization. This can create a situation where there is no further option to grant consent for the non-admin users via the pop-up interface.

    In this case, a Global Administrator, an Application Administrator, or a Cloud Application Administrator. can grant consent for the organization in the Enterprise applications of the Azure Active Directory.

  • Non-admin users:

    Non-admin users will not be granted access to the app until an Office 365 administrator grants permission to the organization.

    Users should contact their Office 365 admin if they are seeing this message.

    Admin consent required - User view

    Note:

    Users can identify their Office 365 administrator by logging in to their Azure portal and look for Global Administrators in the Roles and Administrators section.

  • Non-admin users with the Admin consent workflow enabled:

    Non-admin users will not be granted access to the app until an Office 365 administrator grants permission.

    If the organization has enabled Admin consent workflow, the user will be able to request admin consent directly from the permission screen for their user.

    This permission process grants access to one user at a time (as the admin approves the requests).

    Admin consent required - User view - Consent workflow

  • Administrators:

    Office 365 Administrators will trigger the request to grant permissions when they attempt to access any one of the integrations after the update.

    Admins have the option to Consent on behalf of your organization when accepting the permission request. If this option is enabled, all users in the org are granted access, and no subsequent users will trigger the permissions request.

    If the admin accepts without checking the consent for the organization, they will enable access for just their user.

    Verified Publisher - Admin view

    Caution:

    It is possible for the Office administrators to accept the permission request for their individual user, and not on behalf of the organization. This can create a situation where there is no further option to grant consent for the non-admin users via the pop-up interface.

    In this case, a Global Administrator, an Application Administrator, or a Cloud Application Administrator. can grant consent for the organization in the Enterprise applications of the Azure Active Directory.

  • Non-admin users:

    Non-admin users will not be granted access to the app until an Office 365 administrator grants permission to the organization.

    Users should contact their Office 365 admin if they are seeing this message.

    Verified Publisher - User view

    Note:

    Users can identify their Office 365 administrator by logging in to their Azure portal and look for Global Administrators in the Roles and Administrators section.

  • Administrators:

    Office 365 Administrators will trigger the request to grant permissions when they attempt to access any one of the integrations after the update.

    Admins have the option to Consent on behalf of your organization when accepting the permission request. If this option is enabled, all users in the org are granted access, and no subsequent users will trigger the permissions request.

    If the admin accepts without checking the consent for the organization, they will enable access for just their user.

    User consent - Admin view
  • Non-admin users:

    Non admin users will trigger the request to grant permissions when they attempt to access any one of the integrations after the update.

    If the user accepts the permission request, they will enable access for their user.

    User consent - User view