What Is the Difference Between App-Based Onboarding and GDAP?

What Is App-Based Onboarding?

With app-based onboarding, the customer grants access to Attic through an Entra application using admin consent. This process is quick, simple, and provides a stable connection.

You can choose between read-only or read-write access, depending on the required level of permissions.

What Is GDAP Onboarding?

With GDAP (Granular Delegated Admin Privileges), a structural relationship is established between Attic and the customer’s tenant. This provides broader administrative permissions.

Keep in mind:

• Read-only access is not supported in GDAP

• Conditional Access policies can sometimes interfere with the process

• GDAP can only be applied when the partner has a CSP (Cloud Solution Provider) relationship with the customer tenant

When Should I Use App-Based Onboarding?

App-based onboarding is ideal when you need to quickly grant access without being affected by Conditional Access policies.

It is also suitable when customers want to provide limited rights (e.g. read-only access).

This method works even if there is no CSP relationship with the customer tenant.

When Should I Use GDAP?

GDAP is the best choice when you have a CSP relationship and want to automate onboarding.

You can start onboarding directly in the portal: select the service, choose the customer, and the onboarding process begins.