Azure AD Integration I: Configure Azure Active Directory
Configure Azure Directory
- Open Azure Portal and login as an Administrator
- Navigate to Azure Active Directory
- Navigate to Mobility (MDM and MAM)
- Click + Add application
- Choose On-premises MDM application
- Set a given name to the application (e.g. Silverback)
- Click Add
- Wait until Silverback application is added successfully
- Click X to Close
- Click Silverback
- Set MDM User scope:
- Choose “All” or
- Choose “Some” and select “groups”
- Change MDM terms of use URL to e.g. https://silverback.imagoverum.com/EnrollmentServer/TermsOfUse
- Change MDM discovery URL to e.g. https://silverback.imagoverum.com/EnrollmentServer/Discovery.svc
- Click On-Premises MDM application settings
- On the Overview section, copy the following values to any Text Editor (e.g. Notepad++)
- Application (client) ID: e.g. edfde181-304a-48d5-af66-fb0af5877a68
- Directory (tenant) ID: e.g. f7ce7027-e6d8-4844-8a91-1f66ad2a3592
- Navigate to Authentication
- Enter as redirect URI https://127.0.0.1:444/applications/default.aspx
- Click Save
- Navigate to Certificates & secrets
- Click New client secret
- Enter as description e.g. application_key
- Change Expires to never
- Click Add
- Copy the new client secret value to your Text Editor (e.g Notepad++)
- On the Overview section, copy the following values to any Text Editor (e.g. Notepad++)
You won't be able to retrieve it after you leave this blade
- Navigate back to your Azure Portal
- Go to API Permissions
- Click Add a permission
- Scroll down to supported legacy APIs
- Choose Azure Active Directory Graph
- Select Delegated permission
- Click expand all
- Enable all permissions
- Click Add permissions
- Click again Add a permission
- Scroll down to supported legacy APIs
- Choose Azure Active Directory Graph
- Select Application permissions
- Click expand all
- Enable all permissions
- Click Add permissions
- Click Grant admin consent for your organization, e.g. Imagoverum
- Confirm with Yes
- Navigate to Expose an API
- Click the edit button next to Application ID URI
- Change the Value to your Silverback URL, e.g. https://silverback.imagoverum.com
- Click Save
- Close the blade on the upper right with X
- Click Save
- Go to API Permissions
- During the process you should have noted down 3 values
- Application ID,
- Directory ID
- Key Value
- Your Azure Active Directory Configuration is now finished
- Move forward to import these values into Silverback: Azure AD Integration II: Configure Silverback