Loading...

Configuring an Azure Active Directory Client Manually

If security defaults are enabled on the Active Directory, you must manually create the Azure client.

Register Azure Active Directory in the Azure Portal

  1. In the Azure portal, search for and select App Services, and then select Manage Azure Active Directory.
  2. From the left navigation pane, go to App registrations.
  3. Under All Applications, select the app name.
  4. Register a new single tenant application, and then make note of the Application (client) ID and the Directory (tenant) ID for later.
  5. From the left navigation pane, click Certificates & secrets, and then copy the client secret value shown in the page.
  6. From the left navigation pane, go to Properties, and copy the Tenant ID for later.
  7. Click API permissions, and click on Application Permissions, and then assign the following application permissions to the application:

    Application Permissions

    Category

    Directory.ReadWrite.All

    Azure active Directory Graph

    Application.ReadWrite.All

    Microsoft Graph

    AppRoleAssignment.ReadWrite.All

    Microsoft Graph

    Directory.ReadWrite.All

    Microsoft Graph

    Domain.ReadWrite.All

    Microsoft Graph

    Group.ReadWrite.All

    Microsoft Graph

    RoleManagement.ReadWrite.Directory

    Microsoft Graph

    User.ReadWrite.All

    Microsoft Graph

Adding an App for Azure Active Directory

  1. From the navigation pane, go to Protect > Applications > Active Directory.

    The Active Directory servers page appears.

  2. Optional: If you are a tenant user, from the navigation pane, go to Manage > Companies > Company Name > General > Supported Solutions, and then from the Supported Solutions list, click Active Directory.
  3. In the upper-right corner of the page, click Add, and then click Azure Active Directory.

    The Add Azure Active Directory page appears.

  4. In the App name box, enter the name of the Azure AD application.
  5. From the Plan name list, select a plan.
  6. From the Access nodes list, select a client that has the Active Directory agent installed.
  7. From the Index Server list, select a client. All clients computers where you installed the Index Store package are displayed in the index server list.

    To create a new Index Server, from the Index Server list, select ##Create New##.

  8. From the Region list, select the region where your company is located.
  9. Click Configure Manually.
  10. In the Application ID box, type the application (client) ID.
  11. In the Application key value box, type the client secret value that you copied from the Azure portal.
  12. In the Azure Directory ID box, type the Tenant ID.

Last modified: 5/20/2021 10:51:55 PM