...
To set up EmpowerID for Azure AD authentication, you will perform the following tasks:
Register an application in Azure AD
Create a client secret for the Azure application
Add an API permission to the Azure application
Update the EmpowerID account store connected to the Azure tenant for Azure AD auth
Update the EmpowerID resource system for the Azure tenant with Azure Auth configuration parameters
Easy html macro |
---|
theme | {"label":"solarized_dark","value":"solarized_dark"} |
---|
contentByMode | {"html":"<!doctype html>\r\n<link href=\"https://cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/css/bootstrap.min.css\" rel=\"stylesheet\" integrity=\"sha384-EVSTQN3/azprG1Anm3QDgpJLIm9Nao0Yz1ztcQTwFspd3yD65VohhpuuCOmLASjC\" crossorigin=\"anonymous\">\r\n<link href=\"https://docs.empowerid.com/new_docs.css\" rel=\"stylesheet\">\r\n<script src=\"https://cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js\" integrity=\"sha384-MrcW6ZMFYlzcLA8Nl+NtUVF0sA7MsXsP1UyJoMp4YLEuNSfAP+JcXn/tWtIaxVXM\" crossorigin=\"anonymous\"></script>\r\n<div class = \"bd-callout bd-callout-info\">\r\n <h4>Before you begin</h4>\r\n <p>To configure EmpowerID for Azure AD authentication, you first need to connect EmpowerID to <i>each</i> \r\n Azure tenant you want to enable this feature. See <a href=\"https://dotnetworkflow.jira.com/wiki/spaces/EAGV22/pages/2809048927/Azure+AD+SCIM+Deployment+and+Configuration\">Azure AD SCIM Deployment and Configuration</a> \r\n for the details.</p>\r\n \r\n</div>","javascript":"","css":".bd-callout {\n overflow:hidden;\n}"} |
---|
|
|
Step 1
...
– Register the application in Azure AD
In Azure, navigate to your Azure Active Directory.
On the Azure Active Directory navbar, click App registrations.
On the App registrations page, click New registration.
Image RemovedImage AddedOnce the application is registered, copy the Application (client) ID from the Overview page. You need this to configure EmpowerID for Azure AD auth.
Image RemovedImage Added
Step 2 – Create a client secret for the application
Navigate to the Certificates & secrets blade for the application, select the Client Secrets tab and click New Client Secret.
Image RemovedImage AddedCreate the secret and then copy the Value. You need this to configure EmpowerID for Azure AD auth.
Image RemovedImage Added
Step 3 – Add an API permission to the application
...
Navigate to the API permissions blade for the application and click Add a permission.
Image RemovedImage AddedSelect Microsoft Graph as the API and then select Delegated permissions.
Image RemovedImage AddedUnder OpenId permissions, select openid and then click Add permissions.
Image RemovedImage Added
Step 4 – Configure the EmpowerID account store for Azure AD auth
...