Online Help > Data Sources > Data Source Types > Advanced Data Sources > Microsoft SQL Azure > Configure Active Directory Interactive (with MFA Support) Online Help

Configure Azure Active Directory App Registration

2019-11-28

Description

 

To be able to use the Active Directory Interactive (with MFA Support) authentication method in Remote Desktop Manager, a new app needs to be registered in the Microsoft SQL Azure console with the appropriate API permissions.

 

Settings

 

1.Login on Azure Portal.
 

2.In the Azure Active Directory section, select App registrations and then, New registration.

App Registration

App Registration

 

3.Configure the Name, Supported account types and Redirect URL as indicated below.

Supported Account Types

Supported Account Types

 

4.Click on the Authentication section and configure it as indicated below.

Authentication

Authentication

 

5.Click on the API Permissions section and configure it as indicated below.

API Permissions

API Permissions

 

6.Select Azure Active Directory Graph Delegated Permissions User User.Read and click on Add Permissions.

Azure Active Directory Graph

Azure Active Directory Graph

 

User.Read

User.Read

 

7.We would need to add a second permission. To do so, select APIs my organization uses, then type Azure and select Azure SQL Database.

APIs my organization uses

APIs my organization uses

 

8.Select Delegated permissions user_impersonation and click Add permissions.

user_impersonation

user_impersonation

 

9.The API permissions should look like this.

API / Permissions Name

API / Permissions Name

 

10.Your Azure Active Directory App Registration is now completed.
 

11.Copy the App Registration's Application (client) ID.

Application (client) ID

Application (client) ID

 

12.Paste the Application ID inside Remote Desktop Manager, in the App Registration section.

App Registration

App Registration