Creating an Azure OAuth2 Application for RapidIdentity

  • Updated on Nov 15, 2024
  • Published on Jun 21, 2023
  • 1 minute(s) read
Prev Next

Creating an Azure OAuth2 Application for RapidIdentity

  1. Login to https://portal.azure.com/

  2. Select Azure App Registrations in the Azure Services section
    Screenshot 2023-06-21 at 12.17.04 PM.png

  3. Select New Registration
    Screenshot 2023-06-21 at 12.17.56 PM.png

  4. Provide the Name of RapidIdentity and select Accounts in this organizational directory only (%Domain Name% only - Single tenant)

  5. Click Register button.
    Screenshot 2023-06-21 at 12.49.02 PM.png

  6. Once registered be sure to take note of the Application(client) ID and Directory(tenant) ID

This inforamtion can be found later if necessary by navigating manually to App Registrations then selecting Overview from the left menu
Screenshot 2023-06-21 at 12.56.57 PM.png

  1. Select API Permissions from below the Manage section of the left side menu
    Screenshot 2023-06-21 at 1.12.18 PM.png

  2. Select Add a Permission
    Screenshot 2023-06-21 at 1.14.06 PM.png

  3. Select Microsoft Graph
    Screenshot 2023-06-21 at 1.14.55 PM.png

  4. Select Application Permissions
    Screenshot 2023-06-21 at 1.16.16 PM.png

  5. Locate and Check Directory.ReadWrite.All
    Screenshot 2023-06-21 at 1.17.21 PM.png

  6. Click the Add Permissions button
    Screenshot 2023-06-21 at 1.18.08 PM.png

  7. Agree to Grant Admin Consent
    Screenshot 2023-06-21 at 1.13.11 PM.png

  8. Select Certificates & Secrets from below the Manage section of the left side menu
    Screenshot 2023-06-21 at 1.19.32 PM.png

  9. Select New Client Secret
    Screenshot 2023-06-21 at 1.20.10 PM.png

  10. Set Description to RapidIdentity-Client and the Expires to 24 Months which is the maximum allowed by Microsoft
    Screenshot 2023-06-21 at 1.21.28 PM.png

17 Set a calendar reminder for yourself and others in your organization for a month prior to the expiration to update the API to avoid interruptions in service.

  1. Click the Add button
    Screenshot 2023-06-21 at 1.23.44 PM.png

  2. A dialog box will appear with a Secret ID and Secret Value

Important Note

The Secret Value CANNOT be seen again after you close this dialog. If you do not have the value noted a new Client Secret must be created

  1. Once completed your Certificates & Secrets section will look like the below. Please note the Value column is masked by asterisks and cannot be viewed
    Screenshot 2023-06-21 at 1.38.22 PM.png

  2. Go to the Roles and Administrators | Preview and select the link here to go to the directory-level roles
    16217ca3266a50.png

  3. Search for Helpdesk Administrator and select that row.
    Screenshot 2023-06-27 at 10.52.52 AM.png

  4. Select Add Assignments
    Screenshot 2023-06-30 at 9.00.46 AM.png

  5. Search for the application that was registered earlier (should be named RapidIdentity) and select it. Once selected click Add to add it to the role. This gives the application the permissions to set non-administrator passwords.
    Screenshot 2023-06-30 at 9.02.37 AM.png

  6. Go back to the All Roles view by clicking All Roles at the top of the window.
    Screenshot 2023-06-30 at 9.03.26 AM.png

  7. Search for User Administrator and select the row.
    Screenshot 2023-06-30 at 9.06.06 AM.png

  8. Select Add Assignmnets
    Screenshot 2023-06-30 at 9.07.03 AM.png

  9. Search for the application that was registered earlier (should be named RapidIdentity) and select it. Once selected click Add to add it to the role. This gives the application the permissions to manage non-administrator accounts.
    Screenshot 2023-06-30 at 9.08.14 AM.png