Online Help > Data Sources > Data Source Types > Advanced Data Sources > SQL Azure > Configure Active Directory Interactive (with MFA Support)

Configure Azure Active Directory App Registration

Description

 

To be able to use the Active Directory Interactive (with MFA Support) authentication method in Remote Desktop Manager, a new app needs to be registered in the SQL Azure console with the appropriate API permissions.

 

Settings

 

1.Login on Azure Portal.
 

2.In the Azure Active Directory section, select App registrations and then, New registration.

App Registration

App Registration

 

3.Configure the Name, Supported account types and Redirect URL as image below.

Supported Account Types

Supported Account Types

 

4.Click on the Authentication section and configure it as above.

Authentication

Authentication

 

5.Click on the API Permissions section and configure it as above.

API Permissions

API Permissions

 

6.Select Azure Active Directory Graph - Delegated Permissions - User - User.Read and click on Add Permissions.

Azure Active Directory Graph

Azure Active Directory Graph

 

User.Read

User.Read

 

7.We would need to add a second permission. To do so, select APIs my organization uses, then type Azure and select Azure SQL Database.

APIs my organization uses

APIs my organization uses

 

8.Select Delegated permissions - user_impersonation and click Add permissions.

user_impersonation

user_impersonation

 

9.The API permissions should look like this.

API / Permissions Name

API / Permissions Name

 

10.Your Azure Active Directory App Registration is now completed.
 

11.Copy the App Registration's Application (client) ID.

Application (client) ID

Application (client) ID

 

12.Paste the Application ID inside Remote Desktop Manager, in the App Registration section.

App Registration

App Registration