Enabling Azure Active Directory Integration
To enable Azure Active Directory Integration for your Cloud-Managed Splice Machine service, you must create an Azure Application Registration.
An App Registration allows an application (web page, service, etc) to integrate with Azure Active Directory (AD) with a single sign-on. Having the application in Azure AD gives you control over the authentication policy for the application.
Follow these steps to create an Azure App Registration:
- Log into Azure.
- Select Azure Active Directory in the left sidebar.
Click App Registrations in the panel that displays:
Click New Registration in the menu at the top of the panel. This displays the Register an Application screen:
Fill in the following fields:
a. Enter the name you want to use to identify your application. b. Select the supported account types; in most cases, you should select the Accounts in this organizational directory only option. c. Enter the URLs that will use this App Registration in the Redirect URI section. Note that you can use the same APP Registration for multiple applications/environment. For example, if you are integrating with the Splice Machine Cloud Manager, your URLs would look something like this:
d. Click the Register button at the bottom of the screen to create your App Registration.
The Overview screen for your Application displays. Make a note of the Application (client) ID on this screen; you’ll need this ID for integration.
Click the Managed Application link:
Now click Permissions in the left sidebar:
- Click Grant Admin consent for xxx.
- Select the directory and grant permissions.
Go back to the Application and select Authentication in the left sidebar to display the Authentication screen:
Scroll down in the center pane. Select these checkboxes in the Advanced Settings section:
- Access Tokens
- ID Tokens
- Save your settings.