Entra ID configuration supplement

This supplement to the Active Directory: Entra ID (formerly Azure) article explains how to create an “application” within Windows Entra ID Active Directory, which is necessary to enable the Workplace Entra ID integration.

The Entra ID Application ID and API Key required to complete the Entra ID integration can be obtained by following the steps below.

Setup

1. Log in to Microsoft Entra ID as an administrator and select the appropriate Entra ID directory.
   
2. Select Entra ID Active Directory in the side bar.
3. Select the App Registrations option.
4. Click + New registration:
   

5. Create the application:
   

   1. Provide a name (Workplace, for example).

   2. Select the desired supported account type.
      
   3. Enter the Redirect URl.

   This field must match the domain part of the URL displayed when logged into the Workplace account with which this Entra ID instance will be integrated and must be one of the following values:
   
   https://us.workplace.datto.com/
   https://eu.workplace.datto.com/
   https://ca.workplace.datto.com/
   https://au.workplace.datto.com/
   
   

   4. Click Register.
6. Under the Manage menu heading, click API Permissions, then click Add a Permission:
   
7. Click MS Directory Graph:
   
   
8. Configure the permissions:
   
   1. Click Delegated permissions and select the User.Read and the Directory.AccessAsUser.All options. Use the filter feature to help you locate the correct options.
      
      
      
      
   2. Click Add Permissions.
   3. On the API Permission view, click Add a permission.
   4. Click MS Directory Graph.
   5. Click Application permissions and select the Directory.Read.All option. Use the filter feature to help you locate the correct options.
      
      
   6. Click Add Permissions.
9. On the API Permissions view, click Grant admin consent...
   
   
10. Add a secret:
    
    

    1. Under the Manage menu heading to the left of the API Permissions view, click Certificates & secrets, then click + New Client secret.
       

    2. Provide a description (Workplace, for example).
    3. Set the desired duration.
    4. Click Add.
    5. COPY THE KEY that now appears in the Values column of the Client secrets list at the bottom of the page. The key is required to complete the setup and cannot be retrieved after you navigate away from this blade:
       

Gather Information

The setup in Entra ID is now complete. Gather the following information and complete the setup within Workplace Online according to the Active Directory: Entra ID (formerly Azure) guide.

Authentication Domain

1. Click Entra I
2. 

Application ID

1. Click App registrations under the Manage heading.
2. Click the name of the application (Workplace, for example).
3. Copy the Application (client) ID.

API Key

Use the key saved in Step 10, above.