diff --git a/01 Projects/oliver-sales-ops-platform/Oliver Sales Ops Platform.md b/01 Projects/oliver-sales-ops-platform/Oliver Sales Ops Platform.md
index b601346..af377da 100644
--- a/01 Projects/oliver-sales-ops-platform/Oliver Sales Ops Platform.md	
+++ b/01 Projects/oliver-sales-ops-platform/Oliver Sales Ops Platform.md	
@@ -24,6 +24,14 @@ created: 2026-04-28
 - **Local path:** `/Volumes/SSD/Projects/Oliver/oliver-sales-ops-platform`
 
 ## Sessions
+### 2026-04-29 – Configure allowed users list with proper
+**Asked:** Configure allowed users list with proper YAML formatting for the Oliver Sales Ops Platform.
+**Done:** Updated allowed_users.yaml with 9 users (3 admins, 6 editors), removed non-existent zlalani user, and fixed YAML indentation.
+
+### 2026-04-29 – Configure Azure AD redirect URI and
+**Asked:** Configure Azure AD redirect URI and set up allowed user email list for authentication.
+**Done:** Added SPA redirect URI to Azure, received 8 authorized user emails, and confirmed email normalization rules (lowercase, stripped, apostrophe preserved).
+
 ### 2026-04-29 – How should allowed user emails be
 **Asked:** How should allowed user emails be formatted for the configuration?
 **Done:** Documented the YAML format for allowed users with role definitions (viewer, editor, admin) in config/allowed_users.yaml.
@@ -48,6 +56,8 @@ created: 2026-04-28
 ## Change Log
 | Date | Requested | Changed | Files |
 |------|-----------|---------|-------|
+| 2026-04-29 | Allowed users config | Add 9 users with roles, remove zlalani@oliver.agency, fix YAML indentation | config/allowed_users.yaml |
+| 2026-04-29 | Azure AD auth setup | Added redirect URI to https://optical-dev.oliver.solutions/oliver-sales-ops-platform/, configured email allowlist with 8 users, normalized via preferred_username claim | Azure AD config, authentication service |
 | 2026-04-29 | User configuration format | Added YAML schema documentation with role definitions and case-insensitive email handling | config/allowed_users.yaml, backend/app/models/user.py |
 | 2026-04-28 | SSO user allowlist | Added allowed_users.yaml validation, configured redirect URI, set DEV_AUTH_BYPASS flags | config/allowed_users.yaml, .env, deploy/deploy.sh |
 | 2026-04-28 | SSO configuration with user allowlist | redirectUri verification, Azure AD SPA redirect URI registration | MSAL config, app registration 9079054c-9620-4757-a256-23413042f1ef |
diff --git a/99 Daily/2026-04-29.md b/99 Daily/2026-04-29.md
index 0f389f1..718ba4a 100644
--- a/99 Daily/2026-04-29.md	
+++ b/99 Daily/2026-04-29.md	
@@ -17,3 +17,9 @@ tags: [daily]
 - 10:34 (2min) | `oliver-sales-ops-platform`
   - **Asked:** How should allowed user emails be formatted for the configuration?
   - **Done:** Documented the YAML format for allowed users with role definitions (viewer, editor, admin) in config/allowed_users.yaml.
+- 10:41 | `oliver-sales-ops-platform`
+  - **Asked:** Configure Azure AD redirect URI and set up allowed user email list for authentication.
+  - **Done:** Added SPA redirect URI to Azure, received 8 authorized user emails, and confirmed email normalization rules (lowercase, stripped, apostrophe preserved).
+- 10:41 | `oliver-sales-ops-platform`
+  - **Asked:** Configure allowed users list with proper YAML formatting for the Oliver Sales Ops Platform.
+  - **Done:** Updated allowed_users.yaml with 9 users (3 admins, 6 editors), removed non-existent zlalani user, and fixed YAML indentation.