In order to be able to import users into Zylinc Cloud from an Azure Active Directory an Application must be created in Azure.
App creation in Azure portalGo to your Active Directory in the Azure portal and follow the steps below.
Register an App
Click App registrations, New registration.
Click the Register button
Add API Permissions
- Select API permissions and click on Add a permission.
- Select Microsoft Graph and then Application permissions.
- Add these permissions:
- Group.Read.All
- GroupMember.Read.All
- User.Read.All
Click on the "Grant admin consent for ..." button.
The permissions are then as shown below
Add a Client Secret
Take a copy of the generated secret. It is only shown during creation.
Get the Client and Tenant IDs for the application
Go to the Application Overview page and copy the Client ID and Tenant ID. You need to enter these in the
Zylinc Cloud Configuration UI along with the Client Secret.
App creation using Azure CLI commands
The steps above can also be done with the Azure CLI commands below.
Copy the requiredResourceAccess.json file to the Azure storage (clouddrive) used by Azure CLI.
If you are using the Cloud Shell in the Azure Portal then you can click on the Upload File button in its
menubar as shown below
az ad app create \
--display-name AdUserImport \
--password VerySecretWord#1234 \
--end-date 2100-12-31 \
--required-resource-accesses requiredResourceAccess.json
Replace the password with your choice.
Grant admin consent for the requested API permissions with this command