Subscribe to the Non-Human & AI Identity Journal
Home Glossary Threats, Abuse & Incident Response Connected-App Approval
Threats, Abuse & Incident Response

Connected-App Approval

← Back to Glossary
By NHI Mgmt Group Updated July 14, 2026 Domain: Threats, Abuse & Incident Response

The process by which a user or administrator allows a third-party or internal application to integrate with a core platform such as CRM, SSO, or collaboration tools. If poorly governed, it becomes a privileged action that attackers can exploit through social engineering or malicious client enrolment.

Expanded Definition

Connected-App Approval is the permission gate that lets a user or administrator authorize an application to access a core platform through delegated scopes, tokens, or integration permissions. In NHI security, that approval is not just a convenience step; it is an identity trust decision that can expand the app’s reach into CRM records, collaboration data, or SSO-linked resources.

Definitions vary across vendors because some platforms treat approval as a user-consent workflow, while others combine consent, app registration, and admin policy into one control plane. The practical distinction is whether the approval creates a durable trust relationship that persists beyond the original user action. That is why the term sits close to OAuth consent, connected app governance, and service principal onboarding, but is broader than any single protocol. For a standards-oriented baseline on identity governance and access control, teams often map the control to the NIST Cybersecurity Framework 2.0 and related authorization lifecycle practices.

The most common misapplication is treating app approval as a low-risk user preference, which occurs when administrators fail to distinguish between harmless UI integrations and integrations that mint long-lived credentials or broad API access.

Examples and Use Cases

Implementing connected-app approval rigorously often introduces friction for legitimate users, requiring organisations to weigh faster onboarding against tighter control over data exposure and delegated authority.

  • A sales team requests a third-party revenue app to connect to CRM objects; approval must verify requested scopes, publisher trust, and whether the app can later read or write sensitive account data.
  • An internal automation tool asks for access to collaboration messages and file storage; the approver must confirm business justification, service ownership, and offboarding responsibility before the grant persists.
  • A platform administrator enables an integration that supports SSO-backed access for a partner; the approval should be logged, reviewed, and tied to a defined expiry or recertification cycle.
  • Security teams compare approval records against guidance in the Ultimate Guide to NHIs to identify app enrolments that behave like unmanaged NHIs.
  • Governance teams align approval workflows with the NIST Cybersecurity Framework 2.0 so that access grants, logging, and review are part of a repeatable control process rather than an ad hoc exception.

These examples matter because a connected app often inherits the trust of the approving user or tenant, even when the app operator is external and the downstream access is far broader than the initial prompt suggests.

Why It Matters in NHI Security

Connected-app approval is a high-value target because it can create a stealthy, durable foothold without needing password theft or interactive login. Once approved, the application may function as a non-human identity with access that survives user turnover, password resets, or normal session expiry. That makes approval governance central to preventing secret sprawl, unauthorized API access, and hidden privilege accumulation across SaaS and identity platforms.

NHI Mgmt Group notes that 92% of organisations expose NHIs to third parties, raising supply chain security concerns, and that 97% of NHIs carry excessive privileges, which broadens the blast radius when an app is over-approved. Those conditions make connected-app approval a governance choke point, not a simple UX step. The Ultimate Guide to NHIs is especially relevant here because it frames approval, rotation, visibility, and offboarding as linked controls rather than isolated tasks.

Organisations typically encounter the consequences only after an unauthorized integration exfiltrates data or an approved app continues operating after the business owner has changed, at which point connected-app approval becomes operationally unavoidable to address.

Standards & Framework Alignment

This section maps relevant standards and security frameworks to the operational risks and controls described in this guidance.

OWASP Non-Human Identity Top 10 and OWASP Agentic AI Top 10 address the attack and risk surface, while NIST CSF 2.0, NIST Zero Trust (SP 800-207) and NIST SP 800-63 set the governance and control requirements practitioners need to meet.

FrameworkControl / ReferenceRelevance
OWASP Non-Human Identity Top 10NHI-01Connected-app approval governs how non-human identities are introduced and trusted.
NIST CSF 2.0PR.AC-4Approval decisions directly affect access permissions and least-privilege enforcement.
NIST Zero Trust (SP 800-207)AC-4Zero Trust requires explicit authorization for every application request and connection.
NIST SP 800-63AAL2Approval workflows should reflect the assurance needed for delegated access and consent.
OWASP Agentic AI Top 10A2Agentic and automated apps can abuse approval flows to gain broad tool access.

Treat each connected app as a separately authorized subject with verified policy before access is granted.

NHIMG Editorial Note
Reviewed and updated by the NHIMG editorial team on July 14, 2026.
NHI Mgmt Group — the #1 independent authority on Non-Human Identity, IAM, and Agentic AI security. nhimg.org