M365 Changelog: (Updated) Teams admin center: App centric management and changes to app permission policies – Mar 4, 2025

MC688930 – Updated March 3, 2025: Microsoft has updated the rollout timeline below. Thank you for your patience.

App centric management (ACM) is on hold as of August 14, 2024 and will restart in mid-September (previously June). Your experience during this hold will fall under one of the following , with Phases defined in detail below.

• If your tenant has already been migrated to ACM, it will remain on ACM. The rest of this MC post is not applicable to your tenant.
• If your tenant fell under the Phase 1 criteria of using only the Global app permission policy and no custom app permission policies, it will resume auto migration in mid-September.
• If you do not have a draft currently saved, you will not be able to access ACM migration until the roll out restarts.

What is in Phase 2?

• Migration wizard: a step-by-step guide to help you migrate the permission policies. You will be able to select which polities to migrate and designate users groups or individuals who should have access to the apps.
• Testing and Validation: before finalizing the migration, you will have the opportunity to test and export your staged changes. You can use this to make side-by-side comparison with your current setup, ensuring everything is perfect before you proceed.
• Duration: The migration process is designed to have no downtime for the end users and can take a few hours to complete. During the migration, your existing permission policies will remain in effect until the transition to app centric management completes.

Detailed documentation for the migration process is available at App centric management to manage user access to Teams apps – Microsoft Teams | Microsoft Learn.

App centric management introduces new admin settings to control who in the tenant can install Teams apps. First, admins can set a default value for new apps that are published to the Teams app store. Second, admins can manage apps for users, groups, or everyone in the organization. This feature replaces the existing app permission policies and provides admins with the ability to manage access to the app individually. The app permission policies for existing customers are migrated to maintain existing app availability in the tenant.

This message is associated with Microsoft 365 Roadmap ID 151829

When this will happen:

This feature will gradually roll out across three major phases.

Phase 1: Auto-migration for only single policy customers – This is applicable for customer with only a global permission policy. The roll-out has started and will be complete by end of March 2025.

Phase 2: Self-migration – admins of our customers can do self-migration using the Migration Wizard. This is the preferred way for customers to have tenant admin to be in the loop of migration. The migration Wizard is available to all customers now till end of March 2025. If you need more time to prepare for self-migration, please reach out to support.

Phase 3: Auto-migration for all customers – This is application for customers who have not completed self-migration in Phase 2. This is targeted to start in April 2025.

How this will affect your organization:

Starting with this release, you can:

1. Manage Teams apps for selected set of users, groups or all users in the organization.

View image in new tab

View image in new tab

2. Set the default value for new apps published to Teams app store for each of the app types: Microsoft, third-party and custom apps.

View image in new tab

What you need to do to prepare:

No action needed for phase 1 tenants with Global permission policy only. More information will be provided for phase 2 and 3 tenants in a follow-up communication before launch.

Additional information