Difference between revisions of "Azure Active Directory Connection"

From Studentnet Wiki
Jump to navigation Jump to search
(Created page with "==Instructions for setting up Azure Active Directory Connection== Head to '''Azure Active Directory dashboard''', click on '''Manage Azure Active Directory'''<br>File:Azure...")
 
Line 13: Line 13:
 
Name the application and register.
 
Name the application and register.
  
On the registered app page, click on '''Certificates and secrets'''
+
On the registered app page, click on '''Certificates and secrets'''<br>[[File:Azure_4.png|1500px]]
[[File:Azure_4.png|1500px]]
 
  
  
Add a new secret by clicking '''New Client Secret''' and save the secret value for future use.
+
Add a new secret by clicking '''New Client Secret''' and save the secret value for future use.<br>[[File:Azure_5.png|1500px]]
[[File:Azure_5.png|1500px]]
 
  
  
Click on '''API permissions'''
+
Click on '''API permissions'''<br>[[File:Azure_6.png|1500px]]
[[File:Azure_6.png|1500px]]
 
  
  
Add permission and select '''Microsoft Graph API'''
+
Click '''Add a permission''' and select '''Microsoft Graph API'''<br>[[File:Azure_7.png|1500px]]
[[File:Azure_7.png|1500px]]
 
  
  
  
 
Add the following permissions separately:
 
Add the following permissions separately:
*Delegated permissions
+
'''Delegated permissions'''
 
*Application.Read.All
 
*Application.Read.All
 
*Application.ReadWrite.All
 
*Application.ReadWrite.All
Line 51: Line 47:
  
  
Application permissions
+
'''Application permissions'''
 
*Application.Read.All
 
*Application.Read.All
 
*Application.ReadWrite.All
 
*Application.ReadWrite.All
Line 68: Line 64:
 
*User.ReadWrite.All
 
*User.ReadWrite.All
  
Grant admin consent
+
Grant admin consent by clicking '''Grant admin consent for Studentnet'''<br>[[File:Azure_8.png|1500px]]
[[File:Azure_8.png|1500px]]
 
  
  
Permission granted
+
Permission granted<br>[[File:Azure_9.png|1500px]]
[[File:Azure_9.png|1500px]]
 
  
 +
Head to '''Cloudwork dashboard'''>'''External Domains'''>'''Azure Active Directory'''>'''Add new'''<br>[[File:Azure_10.png|1500px]]
  
 +
*'''App Object ID''': Object Id for the registered app<br>
 +
*'''Client Id''': Application Id for the registered app<br>
 +
*'''Tenant Id''': Tenant Id<br>
 +
*'''Client secret''': secret value saved before<br>
  
Head to '''Cloudwork dashboard'''>'''External Domains'''>'''Azure Active Directory'''>'''Add new'''
+
If the secret is going to expire, there will be a warning message with the days to expire<br>[[File:Azure_11.png|1500px]]
[[File:Azure_10.png|1500px]]
 
  
 +
To renew the secret, head to '''Home''' > '''App registration'''<br>[[File:Azure_12.png|1500px]]
  
 +
Click on to the app used in Cloudwork, and head to Certificates & secrets, remove the expired secret and add a new secret, then paste the secret to Cloudwork<br>[[File:Azure_13.png|1500px]]
  
App Object ID - Object Id for the registered app<br>
+
[[Category:Cloudwork Dashboard]]
Client Id: Application Id for the registered app<br>
 
Tenant Id: Tenant Id<br>
 
Client secret: secret value saved before<br>
 
 
 
If the secret is going to expire, there will be a warning message with the days to expire
 
[[File:Azure_11.png|1500px]]
 
 
 
To renew the secret, head to '''Home''' > '''App registration'''
 
[[File:Azure_12.png|1500px]]
 
 
 
Click on to the app used in Cloudwork, and head to Certificates & secrets, remove the expired secret and add a new secret, then paste the secret to Cloudwork
 
[[File:Azure_13.png|1500px]]
 

Revision as of 04:03, 15 March 2022

Instructions for setting up Azure Active Directory Connection

Head to Azure Active Directory dashboard, click on Manage Azure Active Directory
Azure 1.png


Come to the tenant and click on App registration
Azure 2.png


Click on New registration
Azure 3.png


Name the application and register.

On the registered app page, click on Certificates and secrets
Azure 4.png


Add a new secret by clicking New Client Secret and save the secret value for future use.
Azure 5.png


Click on API permissions
Azure 6.png


Click Add a permission and select Microsoft Graph API
Azure 7.png


Add the following permissions separately: Delegated permissions

  • Application.Read.All
  • Application.ReadWrite.All
  • Directory.AccessAsUser.All
  • Directory.Read.All
  • Directory.ReadWrite.All
  • Domain.Read.All
  • Domain.ReadWrite.All
  • Group.Read.All
  • Group.ReadWrite.All
  • GroupMember.Read.All
  • GroupMember.ReadWrite.All
  • User.ManageIdentities.All
  • User.Read
  • User.Read.All
  • User.ReadBasic.All
  • User.ReadWrite
  • User.ReadWrite.All


Application permissions

  • Application.Read.All
  • Application.ReadWrite.All
  • Application.ReadWrite.OwnedBy
  • Directory.Read.All
  • Directory.ReadWrite.All
  • Domain.Read.All
  • Domain.ReadWrite.All
  • Group.Create
  • Group.Read.All
  • Group.ReadWrite.All
  • GroupMember.Read.All
  • GroupMember.ReadWrite.All
  • User.ManageIdentities.All
  • User.Read.All
  • User.ReadWrite.All

Grant admin consent by clicking Grant admin consent for Studentnet
Azure 8.png


Permission granted
Azure 9.png

Head to Cloudwork dashboard>External Domains>Azure Active Directory>Add new
Azure 10.png

  • App Object ID: Object Id for the registered app
  • Client Id: Application Id for the registered app
  • Tenant Id: Tenant Id
  • Client secret: secret value saved before

If the secret is going to expire, there will be a warning message with the days to expire
Azure 11.png

To renew the secret, head to Home > App registration
Azure 12.png

Click on to the app used in Cloudwork, and head to Certificates & secrets, remove the expired secret and add a new secret, then paste the secret to Cloudwork
Azure 13.png

Retrieved from "https://wiki.studentnet.net/index.php?title=Azure_Active_Directory_Connection&oldid=1871"