Skip to main content

Microsoft Entra ID Modern Authentication

  • Updated

Only the tenant administrator may be able to set up the Modern Authentication for the Microsoft Entra ID (previously Azure Active Directory) integration. If you wish to locate the SharePoint/Tabular Data documentation, or the Project Online documentation, please navigate to the SharePoint Modern Authentication page, or to Project Online Modern Authentication page.

Create the App Registration within Entra

  1. While logged in as a tenant admin for the client’s organization, log in to portal.azure.com.

  2. Navigate to Microsoft Entra Admin Center.

  3. Within the left navigation bar, expand the Identity section.

  4. Expand Applications.
  5. Select App Registrations

  6. On the top Left of the page, create a New Registration.

    • Name: Give the App Registration Name a title.

    • Supported Account types: Single Tenant.

    • Redirect URI (Optional): Dropdown: Web. URL: https://my.oneplan.ai.

    Create_App_Registration_1.png

  7. Click Register.

  8. Once the registration has been completed, the App Registration page will load. Within the Essentials section, the Application (client) ID can be found.

    Create_App_Registration_2.png

  9. On the navigation panel on the left, click on Certificates & Secrets.

  10. Towards the middle-left of the page, click on + New Client Secret. The Add a Client Secret panel will expand on the right side of the browser.

    Note

    This is where a Description and the Expiration Date can be set according to the company’s policy.

  11. Click Add. The panel will close, and the Client Secret will be in the middle of the page underneath the column labelled as Value.

    Note

    Please note that this value will only appear once, it is encouraged to save this value in a secure location should you need it a second time. Otherwise, it is best practice to create a whole new client secret for each time it is needed.

    Create_App_Registration_3.png

Set API Permissions

  1. Once finished with the setting up the Client Secret, navigate to the API Permissions page (left navigation panel, beneath Manage).

  2. Select Add A Permission.

  3. Beneath the Microsoft APIs tab, select Microsoft Graph.

  4. What type of permissions does your application require? Select Application Permissions.

  5. In the dropdown selections, choose these permission levels:

    • User.Read.All

    • Group.Read.All

    • GroupMember.Read.All

  6. Once the Permission levels have been selected, click Add Permissions.

  7. In the API Permissions page, click Grant Admin consent for {Tenant Name}.

  8. Click on Yes for the consent confirmation popup.

    Set_API_Permission.png

OneConnect Setup

  1. While logged into OneConnect, go to the Microsoft Entra ID Users to OnePlan integration.

  2. In the Microsoft Entra ID setup page, type in the Primary Domain URL. This can be found in the Microsoft Entra Identity Overview Page (i.e., {TenantName}.onmicrosoft.com).

  3. Type in the Client Id and Client Secret.

  4. Click test to confirm that the connection works as intended. If there is a Connected Successfully notification at the top right of the browser page, proceed to click on Save.

Related articles

Comments

0 comments

Article is closed for comments.