- Go to active directory: https://portal.azure.com/#blade/Microsoft_AAD_IAM/ActiveDirectoryMenuBlade/Overview
- App registrations > New registration
- Fillup details:
- Name: i.e. Azure AD for APIM
- Supported account types: i.e. multi-tenant
- Redirect URI (optional):
https://dem0apim.developer.azure-api.net/signin
- Copy tetant id, client id and client secrets from app registration
- Tenant id: i.e.
b5c2bc7c-e201-4576-a081-1b7fba032a3d
- Client id: i.e.
7a1da2a6-009b-4e09-af98-28445f242eca
- Create Client Secret and copy it (
R7W~.D3eZqv~mD8cjX8a3-zNtu8S7I~Hfd)
- API permission > Add a permission > Microsoft graph > Delegated permission > ‘Directory.Read.All’ and ‘Group.Read.All’
- Authentication > Implicit grant > Access Token, ID Token
- Azure portal > Resource group > APIM
- Custom domains > copy custorm domain (if you are using custom domain)
- Developer portal section > Identities
- Add > Type: Azure active directory > Fillup details (copied in previous steps)
- Add
- Groups > There will be ‘+ Add Azure AD group’
