Versions Compared

Old Version 1

changes.mady.by.user Phillip Hanegan

Saved on

compared with

New Version 2

changes.mady.by.user Phillip Hanegan

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

To set up EmpowerID for Azure AD authentication, you will perform the following tasks:

  1. Register an application in Azure AD

  2. Create a client secret for the Azure application

  3. Add an API permission to the Azure application

  4. Update the EmpowerID account store connected to the Azure tenant for Azure AD auth

  5. Update the EmpowerID resource system for the Azure tenant with Azure Auth configuration parameters

Easy html macro
theme{"label":"solarized_dark","value":"solarized_dark"}
contentByMode{"html":"<!doctype html>\r\n<link href=\"https://cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/css/bootstrap.min.css\" rel=\"stylesheet\" integrity=\"sha384-EVSTQN3/azprG1Anm3QDgpJLIm9Nao0Yz1ztcQTwFspd3yD65VohhpuuCOmLASjC\" crossorigin=\"anonymous\">\r\n<link href=\"https://docs.empowerid.com/new_docs.css\" rel=\"stylesheet\">\r\n<script src=\"https://cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js\" integrity=\"sha384-MrcW6ZMFYlzcLA8Nl+NtUVF0sA7MsXsP1UyJoMp4YLEuNSfAP+JcXn/tWtIaxVXM\" crossorigin=\"anonymous\"></script>\r\n<div class = \"bd-callout bd-callout-info\">\r\n <h4>Before you begin</h4>\r\n <p>To configure EmpowerID for Azure AD authentication, you first need to connect EmpowerID to <i>each</i> \r\n Azure tenant you want to enable this feature. See <a href=\"https://dotnetworkflow.jira.com/wiki/spaces/EAGV22/pages/2809048927/Azure+AD+SCIM+Deployment+and+Configuration\">Azure AD SCIM Deployment and Configuration</a> \r\n for the details.</p>\r\n \r\n</div>","javascript":"","css":".bd-callout {\n overflow:hidden;\n}"}
Step 1 
...
Register the application in Azure AD
  1. In Azure, navigate to your Azure Active Directory.
  2. On the Azure Active Directory navbar, click App registrations.
  3. On the App registrations page, click New registration.
    Image RemovedImage Added
  4. Once the application is registered, copy the Application (client) ID from the Overview page. You need this to configure EmpowerID for Azure AD auth.
    Image RemovedImage Added
Step 2 – Create a client secret for the application
  1. Navigate to the Certificates & secrets blade for the application, select the Client Secrets tab and click New Client Secret.
    Image RemovedImage Added
  2. Create the secret and then copy the Value. You need this to configure EmpowerID for Azure AD auth.
    Image RemovedImage Added
Step 3 – Add an API permission to the application
...
  1. Navigate to the API permissions blade for the application and click Add a permission.
    Image RemovedImage Added
  2. Select Microsoft Graph as the API and then select Delegated permissions.
    Image RemovedImage Added
  3. Under OpenId permissions, select openid and then click Add permissions.
    Image RemovedImage Added

Step 4 – Configure the EmpowerID account store for Azure AD auth
...