Azure Active Directory
To integrate the Axon Ivy Engine with Azure Active Directory as an Identity Provider, you first need to create an application in Azure Active Directory. From which you need at least the following settings:
the
TenantId
(Directory (tenant) ID)the
ClientId
(Application ID) andthe
ClientSecret
(Secret Value).
It is sufficient to copy the following template and adjust the values. The Engine Cockpit offers a detailed configuration page to connect to Azure Active Directory.
Template
1# Azure Active Directory as an Identity Provider for the 'default' Security System
2# [engineDir]/configuration/ivy.yaml
3SecuritySystems:
4 default:
5 Provider: azure-active-directory
6 TenantId: 03a6b499-b98a-4e6e-b422-00a84144c5e0
7 ClientId: cd5b4637-9be8-4008-94ea-23ed80c56820
8 ClientSecret: "${encrypt:1234}"
Reference
1# Azure AD Tenant ID
2TenantId: ""
3
4# Client ID provided by Azure AD when registering the application
5ClientId: ""
6
7# Client key provided by Azure AD when registering the application
8ClientSecret: ""