Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
| Enabled for | Public preview | General availability |
|---|---|---|
| Users by admins, makers, or analysts | 
Dec 13, 2024 |
Apr 11, 2025 |
Business value
You can protect against data exfiltration by managing and controlling what apps run in your Dataverse environment. Data exfiltration safeguards prevent unauthorized removal of sensitive information from your environment. With these safeguards, your business maintains continuity and complies with regulatory requirements.
Feature details
By default, when you turn on the App access control feature, only approved apps run in an environment, such as Dynamics 365 Sales or Dynamics 365 Customer Service. The local environment admin chooses which apps users can run in the environment. The feature blocks unauthorized apps when users try to access them.
To help admins choose which apps to approve, turn on audit mode for at least one week to collect a list of apps that users run in an environment. With this audit log list, admins can decide which apps to allow or block.
For apps you allow, assign security roles to restrict who can run those apps in the environment. Only users assigned to the security role can run the apps.
Admins can go to the Security > Access controls page in the Power Platform admin center and turn on the App access control feature. Admins select the applications and security roles to allow access.
Geographic areas
Visit the Explore Feature Geography report for Microsoft Azure areas where this feature is planned or available.
Language availability
Visit the Explore Feature Language report for information on this feature's availability.