EmpowerID uses the Azure AD SCIM Microservice to make API calls to your Azure tenant in response to your actions in EmpowerID. As part of the deployment process for the microservice, an app service needs to be created to host the microservice and configured for Azure AD authentication, as well as with a managed identity that can be granted permissions to access resources protected by Azure AD.
To create and configure the app service, you need to complete the following tasks:
In Azure, navigate to All Services > App services and click Create.
Under Project Details, select a Subscription and Resource Group for the App Service. If desired, you can create a new Resource Group.
Under Instance Details, do the following:
Name – Enter a name for the Web App.
Publish – Select Code.
Runtime Stack – Select .NET 5.
Operating System – Select Linux.
Region – Select the appropriate region.
Under App Service Plan, select an existing Linux Plan or create a new one.
Click Review + Create.
Click Create.
After deployment completes, click Go to Resource and copy the URL from the Overview page. You will need this when you configure the app service for the EmpowerID Azure AD SCIM Microservice.
Configure authentication
Navigate to the Authentication blade for the app service and click Add identity provider.
Select Microsoft.
Add the following identity provider information:
App registration type – Select Pick an existing app registration in this directory.