Configuring the Azure AD Settings

Describes the instructions to configure the Azure AD settings

You can configure the Azure AD settings from the Web UI. Using the Web UI, you can enable the Azure AD settings to manage user access to cloud applications, import users or groups, and assign specific roles to them.

For more information about configuring Azure AD Settings from the CLI Manager, refer here.

Before configuring Azure AD Settings on the appliance, you must have the following information that is required to connect the appliance with the Azure AD:

  • Tenant ID
  • Client ID
  • Client Secret or Thumbprint

For more information about the Tenant ID, Client ID, Authentication Type, and Client Secret/Thumbprint, search for the text Register an app with Azure Active Directory on Microsoft’s Technical Documentation site at https://learn.microsoft.com/en-us/docs/

The following are the list of the API permissions that must be granted.

  • Group.Read.All
  • GroupMember.Read.All
  • User.Read
  • User.Read.All

For more information about configuring the application permissions in the Azure AD, please refer https://learn.microsoft.com/en-us/graph/auth-v2-service?tabs=http.

Perform the following steps to configure Azure AD settings:

  1. On the Web UI, navigate to Settings > Users > Azure AD.
    The following figure shows an example of Azure AD configuration.

Azure AD configuration

  1. Enter the data in the fields as shown in the following table:

    SettingDescription
    Tenant IDUnique identifier of the Azure AD instance.
    Client IDUnique identifier of an application created in Azure AD.
    Auth TypeSelect one of the Auth Type:
    • SECRET indicates a password-based authentication. In this authentication type, the secrets are symmetric keys, which the client and the server must know.
    • CERT indicates a certificate-based authentication. In this authentication type, the certificates are the private keys, which the client uses. The server validates this certificate using the public key.
    Client Secret/ThumbprintThe client secret/thumbprint is the password of the Azure AD application.
    • If the Auth Type selected is SECRET, then enter Client Secret.
    • If the Auth type selected is CERT, then enter Client Thumbprint.

    For more information about the Tenant ID, Client ID, Authentication Type, and Client Secret/Thumbprint, search for the text Register an app with Azure Active Directory on Microsoft’s Technical Documentation site at https://learn.microsoft.com/en-us/docs/.

  2. Click Test to test the provided configuration.
    The Azure AD settings are authenticated successfully. To save the changes, click ‘Apply/Save’. message appears.

  3. Click Apply to apply and save the configuration settings.
    The Azure AD settings are saved successfully message appears.

Importing Azure AD Users

Describes the instructions to import the Azure AD users

Working with External Azure Groups

Describes the instructions to work with the external Azure groups

Last modified February 7, 2025