Azure AD Connector

Print Friendly, PDF & Email

Azure AD Configuration Requirements and Setup

By following these steps, you can successfully configure the Azure AD Connector to forward events to your specified machine.

AD Ingestion Connector Requirements.

  1. Sign in to the Microsoft Entra admin center.
  2. Browse to Identity > Applications > App registrations and select New registration.
  3. Enter a display Name for your application. Users might see the display name when they use the app, for example, during sign-in. You can change the display name at any time, and multiple app registrations can share the same name. The app registration’s automatically generated Application (client) ID, not its display name, uniquely identifies your app within the identity platform.
  4. Select the Supported account types as Accounts in this organizational directory (<Tenant Name/domain> only – Single tenant).
  5. Don’t enter anything for Redirect URI (optional).
  6. Select Register to complete the initial app registration.
  7. Once the registration finishes, the Microsoft Entra admin center displays the app registration’s Overview pane. In this pane, you see the Application (client) ID, also called the client ID.
  8. Also, you see the Client credentials, Select Add certificate or secret > New client secret (or If using already registered, then select your application. Then Select Certificates & secrets > Client secrets > New client secret).
  9. Add a description for your client’s secret.
  10. Select an expiration for the secret or specify a custom lifetime. Client secret lifetime is limited to two years (24 months) or less. You can’t specify a custom lifetime longer than 24 months.
  11. Select Add.
  12. Record the secret’s value for use in your client application code. This secret value is never displayed again after you leave this page.
  13. Add permission to access Mail and User API,
    1. Select API permissions > Add a permission > Microsoft APIs. Select Microsoft Graph and then, Application permissions.
    2. Under Select Permissions, Search for User, and Select User.Read, User.Read.All, User.ReadWrite.All.
  14. Select API permissions > Add a permission > Microsoft APIs. Select Microsoft Graph and then, Application permissions.
  15. Under Select Permissions, Search for Audit, and Select AuditLog.Read.All
  • Configuration of AD Ingestion Connector.
  1. Under the connector, go to Ingestion.
  2. Select O365 Response Connector. Click on Configure.
  3. Enter the Client Domain (Ex. quickheal.com), Client Id, and Client Secret.
  4. Select the Validate and Save.
Was this page helpful?
Yes No