Prevent admin consent for Azure AD app for every user's first login

Problem statement

I have enabled Azure AD enterprise connection. When logging into Auth0 using the Azure AD SSO, for the first login, it prompts the admin of the tenant to approve the app. This prompt appears for every logged-in user.

Is there a way we can customize it to require consent for the first user and for the first-time login, instead of every user getting the prompt?

Symptoms

• Admin consent required for each user on first login to Azure based App

Solution

In order to stop users being prompted for consent, you need to provide consent on the Azure side as an Admin on behalf of your users for your Azure app. Please see the Azure AD documentation on this here:

• Overview of user and admin consent - Microsoft Entra | Microsoft Learn
• Grant tenant-wide admin consent to an application - Microsoft Entra | Microsoft Learn