Creating an Azure OAuth2 Application for RapidIdentity

Select Azure App Registrations in the Azure Services section
Screenshot 2023-06-21 at 12.17.04 PM.png

Select New Registration
Screenshot 2023-06-21 at 12.17.56 PM.png

Provide the Name of RapidIdentity and select Accounts in this organizational directory only (%Domain Name% only - Single tenant)

Click Register button.
Screenshot 2023-06-21 at 12.49.02 PM.png

Once registered be sure to take note of the Application(client) ID and Directory(tenant) ID

This inforamtion can be found later if necessary by navigating manually to App Registrations then selecting Overview from the left menu
Screenshot 2023-06-21 at 12.56.57 PM.png

Screenshot 2023-06-21 at 12.56.57 PM.png

Select API Permissions from below the Manage section of the left side menu
Screenshot 2023-06-21 at 1.12.18 PM.png

Select Add a Permission
Screenshot 2023-06-21 at 1.14.06 PM.png

Select Microsoft Graph
Screenshot 2023-06-21 at 1.14.55 PM.png

Select Application Permissions
Screenshot 2023-06-21 at 1.16.16 PM.png

Locate and Check Directory.ReadWrite.All
Screenshot 2023-06-21 at 1.17.21 PM.png

Click the Add Permissions button
Screenshot 2023-06-21 at 1.18.08 PM.png

Agree to Grant Admin Consent
Screenshot 2023-06-21 at 1.13.11 PM.png

Select Certificates & Secrets from below the Manage section of the left side menu
Screenshot 2023-06-21 at 1.19.32 PM.png

Select New Client Secret
Screenshot 2023-06-21 at 1.20.10 PM.png

Set Description to RapidIdentity-Client and the Expires to 24 Months which is the maximum allowed by Microsoft
Screenshot 2023-06-21 at 1.21.28 PM.png

17 Set a calendar reminder for yourself and others in your organization for a month prior to the expiration to update the API to avoid interruptions in service.

Click the Add button
Screenshot 2023-06-21 at 1.23.44 PM.png

A dialog box will appear with a Secret ID and Secret Value

Important Note

The Secret Value CANNOT be seen again after you close this dialog. If you do not have the value noted a new Client Secret must be created

Once completed your Certificates & Secrets section will look like the below. Please note the Value column is masked by asterisks and cannot be viewed
Screenshot 2023-06-21 at 1.38.22 PM.png

Go to the Roles and Administrators | Preview and select the link here to go to the directory-level roles

Search for Helpdesk Administrator and select that row.
Screenshot 2023-06-27 at 10.52.52 AM.png

Select Add Assignments
Screenshot 2023-06-30 at 9.00.46 AM.png

Search for the application that was registered earlier (should be named RapidIdentity) and select it. Once selected click Add to add it to the role. This gives the application the permissions to set non-administrator passwords.
Screenshot 2023-06-30 at 9.02.37 AM.png

Go back to the All Roles view by clicking All Roles at the top of the window.
Screenshot 2023-06-30 at 9.03.26 AM.png

Search for User Administrator and select the row.
Screenshot 2023-06-30 at 9.06.06 AM.png

Select Add Assignmnets
Screenshot 2023-06-30 at 9.07.03 AM.png

Search for the application that was registered earlier (should be named RapidIdentity) and select it. Once selected click Add to add it to the role. This gives the application the permissions to manage non-administrator accounts.
Screenshot 2023-06-30 at 9.08.14 AM.png

Creating an Azure OAuth2 Application for RapidIdentity

Creating an Azure OAuth2 Application for RapidIdentity

What's Next