Contents x
    Creating an Azure OAuth2 Application for RapidIdentity
    • 30 Jun 2023
    • 1 Minute to read
    • Print
    • Dark
      Light
    Contents

    Creating an Azure OAuth2 Application for RapidIdentity

    • Updated on 30 Jun 2023
    • 1 Minute to read
    • Print
    • Dark
      Light
    Article Summary

    Creating an Azure OAuth2 Application for RapidIdentity

    1. Login to https://portal.azure.com/

    2. Select Azure App Registrations in the Azure Services section
      Screenshot 2023-06-21 at 12.17.04 PM.png

    3. Select New Registration
      Screenshot 2023-06-21 at 12.17.56 PM.png

    4. Provide the Name of RapidIdentity and select Accounts in this organizational directory only (%Domain Name% only - Single tenant)

    5. Click Register button.
      Screenshot 2023-06-21 at 12.49.02 PM.png

    6. Once registered be sure to take note of the Application(client) ID and Directory(tenant) ID

    This inforamtion can be found later if necessary by navigating manually to App Registrations then selecting Overview from the left menu
    Screenshot 2023-06-21 at 12.56.57 PM.png

    1. Select API Permissions from below the Manage section of the left side menu
      Screenshot 2023-06-21 at 1.12.18 PM.png

    2. Agree to Grant Admin Consent
      Screenshot 2023-06-21 at 1.13.11 PM.png

    3. Select Add a Permission
      Screenshot 2023-06-21 at 1.14.06 PM.png

    4. Select Microsoft Graph
      Screenshot 2023-06-21 at 1.14.55 PM.png

    5. Select Application Permissions
      Screenshot 2023-06-21 at 1.16.16 PM.png

    6. Locate and Check Directory.ReadWrite.All
      Screenshot 2023-06-21 at 1.17.21 PM.png

    7. Click the Add Permissions button
      Screenshot 2023-06-21 at 1.18.08 PM.png

    8. Select Certificates & Secrets from below the Manage section of the left side menu
      Screenshot 2023-06-21 at 1.19.32 PM.png

    9. Select New Client Secret
      Screenshot 2023-06-21 at 1.20.10 PM.png

    10. Set Description to RapidIdentity-Client and the Expires to 24 Months which is the maximum allowed by Microsoft
      Screenshot 2023-06-21 at 1.21.28 PM.png

    17 Set a calendar reminder for yourself and others in your organization for a month prior to the expiration to update the API to avoid interruptions in service.

    1. Click the Add button
      Screenshot 2023-06-21 at 1.23.44 PM.png

    2. A dialog box will appear with a Secret ID and Secret Value

    Important Note

    The Secret Value CANNOT be seen again after you close this dialog. If you do not have the value noted a new Client Secret must be created

    1. Once completed your Certificates & Secrets section will look like the below. Please note the Value column is masked by asterisks and cannot be viewed
      Screenshot 2023-06-21 at 1.38.22 PM.png

    2. Go to the Roles and Administrators | Preview and select the link here to go to the directory-level roles
      16217ca3266a50.png

    3. Search for Helpdesk Administrator and select that row.
      Screenshot 2023-06-27 at 10.52.52 AM.png

    4. Select Add Assignments
      Screenshot 2023-06-30 at 9.00.46 AM.png

    5. Search for the application that was registered earlier (should be named RapidIdentity) and select it. Once selected click Add to add it to the role. This gives the application the permissions to set non-administrator passwords.
      Screenshot 2023-06-30 at 9.02.37 AM.png

    6. Go back to the All Roles view by clicking All Roles at the top of the window.
      Screenshot 2023-06-30 at 9.03.26 AM.png

    7. Search for User Administrator and select the row.
      Screenshot 2023-06-30 at 9.06.06 AM.png

    8. Select Add Assignmnets
      Screenshot 2023-06-30 at 9.07.03 AM.png

    9. Search for the application that was registered earlier (should be named RapidIdentity) and select it. Once selected click Add to add it to the role. This gives the application the permissions to manage non-administrator accounts.
      Screenshot 2023-06-30 at 9.08.14 AM.png

    Was this article helpful?
    What's Next