Azure Active Directory

To integrate the Axon Ivy Engine with Azure Active Directory as an Identity Provider, you first need to create an application in Azure Active Directory. From which you need at least the following settings:

  • the TenantId (Directory (tenant) ID)

  • the ClientId (Application ID) and

  • the ClientSecret (Secret Value).

It is sufficient to copy the following template and adjust the values. The Engine Cockpit offers a detailed configuration page to connect to Azure Active Directory.

Template

1# Azure Active Directory as an Identity Provider for the 'default' Security System
2# [engineDir]/configuration/ivy.yaml 
3SecuritySystems:
4  default:
5    Provider: azure-active-directory
6    TenantId: 03a6b499-b98a-4e6e-b422-00a84144c5e0
7    ClientId: cd5b4637-9be8-4008-94ea-23ed80c56820
8    ClientSecret: "${encrypt:1234}"

Reference

1# Azure AD Tenant ID
2TenantId: ""
3
4# Client ID provided by Azure AD when registering the application
5ClientId: ""
6
7# Client key provided by Azure AD when registering the application
8ClientSecret: ""