Table of Contents | ||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|
|
...
Azure Subscription Management Contributor/Owner
The user must have the role Contributor or Owner for the subscription being used
Permission to Create and Manage Enterprise Applications
The user needs permissions to create and manage Enterprise Applications within Azure Active Directory.
Permission to Alter DNS Configuration
The user must have permissions to alter DNS records for custom domain setup (only required if the auto generated URL used by users to access the application is to be changed to something more readable)
...
One can use a Service Principal that already exists or create a new one
Depending on which of the two options one chose, clicking the Make selection link will either bring up a search pane with existing Service Principals to choose from, or a form to register a new Service Principal. The screenshot above shows the case of creating a new one.
Give the Service Principal (the Entra ID application) a name, for instance AyfiePersonalAssistantApp as done in the example above.
Select the single tenant option (this would cover the case of all users being employees of the customer)
Click the Register button. This will take one away from the page. To get back, use the path at the top of the page as indicated by the green arrow.
Verify that one has created or selected a Service Principal by checking of the check box
Click Next (circled in red) to get to the Authentication page
...