Showing results for 
Search instead for 
Did you mean: 
Regular Visitor

Sharing Canvas app in an Environment secured by a AAD Security Group

We are securing environment access using Environment SG. When we share a Canvas app that has no CDS connection, We are able to share it with users outside the Environment SG. Is this an expected behavior? Shouldn't it be restricted to users in the Environment SG?

Regular Visitor

Can you check might be user added in your environment as disable user?


If you apply security group during Environment creation then other user will not added. But if you create Environment without security group this will add all the tenant user in the environment 


Later if you apply security group after the environment creation so all the users  be will disabled those are not part of the security group. 

Regular Visitor

You are mixing 2 different things here.

Security group control access to environments, meaning ability to build things, and consumme data stored (all ot this tied to security roles of course). But apps can always be shared with anyone in the tenant.

It's very similar to what you have in Sharepoint : even if a limited set of users access the site ( = powerapps env), you can still decide to share some specific files (= apps here) with any other user.

Helpful resources

New Badges

New Solution Badges!

Check out our new profile badges recognizing authored solutions!

New Power Super Users


We are excited to announce the Power Apps Super Users!

Power Apps Community Call

Power Apps Community Call: February

Did you miss the call? Check out the Power Apps Community Call here.

Users online (27,451)