Configuration Parameters

Azure Active Directory (Azure AD) configuration can be enabled by a user with the Administer Active Directory role. To change these settings, navigate to Admin | Directory Services, click the Domain Name associated with your Azure AD directory, and then click Edit.

When creating a new directory, the required configuration screen settings have the following fields:

• Domain Name: A friendly display name for the Azure Directory. When an existing Azure AD Domain is edited, you can still view and edit the Tenant ID, Client ID, and Client Secret fields, or synchronize secret.
• Active: Enable or disable the Azure Active Directory domain integration.
• Tenant ID: Globally unique identifier (GUID) value assigned to the Azure AD directory.
• Client ID: Globally unique identifier (GUID) value assigned to the Client Secret upon creation. Portal will also reference this as the Application ID or App ID.
• Client Secret: Unique, generated string for the Client Secret. This value can only be retrieved upon creation.
• Synchronization Secret: Select or create a secret for synchronization. If the Synchronization Secret is set, the Tenant ID, Client ID, and Client Secret will be taken from the Synchronization Secret. If the Synchronization Secret cleared, the Tenant ID, Client ID, and Client Secret fields can be edited again, but once an Azure AD domain is saved with a Synchronization Secret set, the Tenant ID, Client ID, and Client Secret will not be editable anymore.

Optionally you can also configure the following:

• Multifactor Authentication: Drop-down selection for the desired MFA.