The first step to integrate FAMOC manage with Azure Active Directory is to register the application in our Azure account. To do this, log in to the portal https://portal.azure.com/ and then from the Azure services we choose Azure Active Directory.
Registering FAMOC manage in Azure
After going to the Azure AD tab, select Application registration from the menu on the left.
Then select the New registration option
In the next step, enter the name of the Application and specify whether accounts from one domain or more domains should have access to it - select single- or multi-tennant. We can also provide the URI to which the user is to be redirected after successful authentication (this is optional and can be done later).
Then configure its permissions. Go to the API permissions tab.
We can remove the default User delegated permissions by clicking the three dots icon, and then Remove permissions.
Then, we click Add a permission. We select Microsoft Graph and then Application permissions.
In the Directory section, select directory.read.all and confirm by clicking Add permissions.
Then go to the Certificates & secrets tab to add a new client secret. Click New client secret, enter its description and specify an expiration time.
Then you MUST copy its value (it will not be displayed again).
Then log in to the FAMOC console. Go to your organization's settings, and then find the Azure Active Directory integration section. Click Activate.
In the next step, enter the following data downloaded from the Azure portal:
Display name (can be any)
Application (client) ID
Directory (tenant) ID
Once you click next your integration will be verified. If everything went ok you will see a short summary of imported users. Follow the next steps to finish the integration.
Correct integration is displayed as follows:
You can click Details to view imported users and groups. You can also Remove integration, Synchronize now regardless of schedule or Edit integration settings.