Documentation

Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Use this guide along with the Data Tab Configuration guide to configure a Microsoft Azure AD-integrated SecureAuth® Identity Platform (formerly SecureAuth IdP) realm.

Prerequisites

  • Identity Platform version 19.07 and earlier
  • Have Azure AD and access to the admin console
  • Create or designate an existing administrator service account with read and optional write access for the Identity Platform
  • Create a Native Client Application on Azure AD (see Azure AD configuration below)
  • OPTIONAL: Have Azure Powershell installed to use Powershell commands to get user properties

Contents

Table of Contents
maxLevel1

Azure AD configuration

  1. Log in to your Azure Account through the Azure portal. 

  2. Select Azure Active Directory.
  3. Select App registrations.
  4. Click Add.
  5. In the Create section, set the following:

    Borderless_tables
    NameSet a name for the new application.
    Application TypeSet to Native.
    Redirect URI

    Set to the Fully Qualified Domain Name (FQDN) of the Identity Platform appliance, followed by the realm to which Azure AD is integrated. 

    For example, https://idp.company.com/secureauth2

  6. Click Create.
  7. From the App registrations panel, select the new application you just created. 
  8. Copy the Application ID
  9. Click Settings > Required Permissions
  10. In the Required Permissions section, click Windows Azure Active Directory
  11. In the Enable Access section, delegate the permissions to be granted.
  12. Click Save.
  13. In the Required permissions section, click Grant Permissions
  14. From the Azure Active Directory menu, click Domain names
  15. Copy the .onmicrosoft.com domain name. 
    You will need this domain name in the Identity Platform configuration. 

...