- Go to active directory: https://portal.azure.com/#blade/Microsoft_AAD_IAM/ActiveDirectoryMenuBlade/Overview
- App registrations > New registration
- Fillup details:
- Name: i.e. Azure AD for APIM
- Supported account types: i.e. multi-tenant
- Redirect URI (optional):
https://dem0apim.developer.azure-api.net/signin
- Copy tetant id, client id and client secrets from app registration
- Tenant id: i.e.
b5c2bc7c-e201-4576-a081-1b7fba032a3d
- Client id: i.e.
7a1da2a6-009b-4e09-af98-28445f242eca
- Create Client Secret and copy it (
R7W~.D3eZqv~mD8cjX8a3-zNtu8S7I~Hfd
)
- API permission > Add a permission > Microsoft graph > Delegated permission > ‘Directory.Read.All’ and ‘Group.Read.All’
- Authentication > Implicit grant > Access Token, ID Token
- Azure portal > Resource group > APIM
- Custom domains > copy custorm domain (if you are using custom domain)
- Developer portal section > Identities
- Add > Type: Azure active directory > Fillup details (copied in previous steps)
- Add
- Groups > There will be ‘+ Add Azure AD group’
![Configure APIM roles using Azure AD Step 1](https://dm2304files.storage.live.com/y4mYq_NFSwIZXBah7YJ5SB9M0oXriXm6-bQ7N46woXKcbXo3GFciEFw5ooXu-CF85B4Ux70Q2oISogRtjq5pFFSVPnSCAMUUvNOCJsjEnFhCplYsEGcHT5ke_ZTg7exRzLbNxWabgA0kdAv4ZqCuFJRU9cz1D08Apl_xdU8sasC933AigVeO9-WWgEvrfTLhid-?width=1003&height=608&cropmode=none)
![Configure APIM roles using Azure AD Step 2](https://dm2304files.storage.live.com/y4mqWjBh3mu5mPwRfRC4YkSJibExSoKemWS8MZ3I2Bnc7fD1Zfjwko4RectBsRE0B1pXXEIc5chphfI7vWtxI25fYlWFRLXmPWb5S0px-CZ9vG3P7VUo6HEfTwmD7stznpuhPhZN-OhCwe_Dnc1gx7p67Fs44QBnPaxey3RIKneb9nB7mBoPHjgwK0Nd2vJ1VWm?width=956&height=701&cropmode=none)
![Configure APIM roles using Azure AD Step 3](https://dm2304files.storage.live.com/y4m3bOCGROgQSEU_ik6bboBdPkF0kWvRf3nGWX0i1U7YK_EEAns9Awx-sU5_ZbRQgYSDe5cYuulZ2j_RRkGl_Gq0chqKtPRxoMQxt3OEn8oVZH2_5aM6WW-zcAkVQliWWCiODkj5TXQWKvRpRMkommUxXcvf5Jjlz853ycjMBbnzg73DqxOOotH2GnMd6_4TsHG?width=1272&height=547&cropmode=none)
![Configure APIM roles using Azure AD Step 4](https://dm2304files.storage.live.com/y4mKDvY1BjX71Hth3iXr-lZrMu0xA4yRAa1NxgwW_YChOaKBoXJBvhy3FiAvPHfOs0EFPIIRppKot661PNbRkc9G_ISUADvcLZ0ni04gwUV9dfHTLfudHONL8KK5It1B9pfJvXLcprFOg8-0_dj9nwDdq0TShbY0m2yTA85mTEDytV06tOI_SPjOwnADId8TK3z?width=1126&height=683&cropmode=none)
![Configure APIM roles using Azure AD Step 5](https://dm2304files.storage.live.com/y4mEws2NZIhvkTh9Z1iISzwLzvU7qsJhX1XXLp72E1mcxP6ZVqixqRQM9AJXi9OiKYvL67v8pnsgZrJ7kMBnI_9tdE7L0TJA_gz5W4ttPBNjGtcFV-DajkEGXILEOuvSs7J1uLt-FVEkWjPgqwXOz_CgkIjIAYhKWyEOZyjWON52EwJ7127lyYJeu1c3cIN3I78?width=1324&height=693&cropmode=none)
![Configure APIM roles using Azure AD Step 6](https://dm2304files.storage.live.com/y4mEYEQr2hELXJH8_iGnyZlwCAL8U9zKv0W3tVsrRg5G6-6-tdQGsoy1KFtXrsH5aJYHNLAMqVtWO9yO3iIaTA_M1YW8_L8du2oSUMzQAMi0yiNZS3ItVz2_5ZU4CSl0KrOF-LZJxo_WzrmeB8cASKpdIVKPegWzYrIw0Evcn9GiTHy1Che9a_eL5YDK473ehSq?width=924&height=553&cropmode=none)
![Configure APIM roles using Azure AD Step 7](https://dm2304files.storage.live.com/y4moXWs5i2jRaibmxEa-DLYMcNVpfBA87InPcrzQfRtzerahzTByPcBH2gwu5Hh60yv2NzbGri7HiFc045-fkcZJnUpqnSWhww8Roh_V_LyKkdIZZztHRtrz353UpENULeeZLQThraO3nMW1CmbP7Vh6danfJSoR49eLZ8vSvsR5sVz0bYkqC9svNgUM1PR0UxB?width=948&height=649&cropmode=none)
![Configure APIM roles using Azure AD Step 8](https://dm2304files.storage.live.com/y4mRyJpS_i16zWHqR8b46BudX3kMglkHAX8r0ks00MpaYlpOxX0iePVwwrJjTESk9N52zZJsTXDgwUFVD5z3ImgHSphLHtyM-UA_UiPuDTvuTdJF9esHCr1mSmvYKDLthdnTVlOJqgZ1RsmIHsYCYKzex8u2Jho26tG75CvecHxQt9UlOWp9y5TzVGrQ9c2X29p?width=904&height=637&cropmode=none)
![Configure APIM roles using Azure AD Step 9](https://dm2304files.storage.live.com/y4mVaGBIivJ-iSDh24ROyOrgS3Dgz6mnA1Uem-NNToEbh1VbWe3dHKWJQ6Xe6rK0G00zycjuUepoq0_OBCI00fMZCj--O7VyykNrPRGv-J1qy5PdheUc92BNlvr7YhOtbsAkMVskL_4zMl_J-jiBzDjSV42OXytfLGJ-WtOd7KLfkN5NkUc-Zk_kzPFJr0PO8Y3?width=927&height=494&cropmode=none)
![Configure APIM roles using Azure AD Step 10](https://dm2304files.storage.live.com/y4mz3zBsFs6or2RPakkhQNpapNGw_aOTnAGzK1xu9tjmQYrfSkQqAuiCHU6HxsJNw7fRRt1cgPkb5K2i2KK6RIDq74IWn8ehY76Hje0iVGDdN4ZuzlcbGyNPTxMxMQckIvKWwKtppFLDTVOiFtJWndwSNqiBjL7OiiSxEEHAlNUabzpsvtcxdhHAP8KT0Xts9iL?width=1046&height=705&cropmode=none)
![Configure APIM roles using Azure AD Step 11](https://dm2304files.storage.live.com/y4mb_gkopN9EVpSIhQXZ7_Emd4Xpjs-fv65UoxiYLynciRvLzcGinjpOujkcfzhlirSdYrpnm_MZb_P7Pkoowiiie4DHXBKjVLiGUJzjZtEWukCwFDPWUDqESRlUqIhE4w0hgI4b-0Cunnq12CnkkvmoW0wlR3rNmHk9YLI7Ji-g7ZOQB_LJR3mcoL78qMhR2zU?width=916&height=495&cropmode=none)
![Configure APIM roles using Azure AD Step 12](https://dm2304files.storage.live.com/y4mFSDWGQ5sf9-H50vgfqNqnM-e8u2oQFRzfVmbZ2aeH76eA_nY4SIGK1u86pHlsd505RWVPTlN6WHrR5W0bsklh-0xCAFjy4_mvGNJ8Ytm7uxvSPB-9As_8XgFFynsIdK3WM1Kpo54TPi271OYwcQ3dfSkt61bTere0Bchoo3o9JWSfkJaFuEdQtYT1oxdEJMS?width=1305&height=633&cropmode=none)
![Configure APIM roles using Azure AD Step 13](https://dm2304files.storage.live.com/y4mLxfj41Htu9JuX9nYOx74M21TLuwxcumOwSctvUelDib9XaM55PDOpkpWcM8WnpWjbb9wIO-L8bXzImYPB4niWdvtq58GsOnMa_0mgg-QAP6oeDKtX84_o7vEeVZz4MjCvTuWRA2764mF7bbNoF5D4BZ5AnLhVgfcAs7tXbmLmntTB4uN1pML9jJwNLcF1gG1?width=836&height=736&cropmode=none)