In this video, Sharon outlines the options and demonstrates how to add a custom application to Azure Active Directory for your users to access via the Access Panel.
- [Instructor] Up until now, we've only included applications that were available to us via the gallery, but what if we have an application that's in house? We can go ahead and add those into the access panel and make them available for your users as well. As you can see I have logged into Azure, and the first thing we need to do is actually register our application. Click on App registrations, and you'll notice that we have a list of our applications that are already available to us, including I have a couple of Line of Business applications that I've already created, and this is what I'm going to show you how to create is these customized line of business applications.
Click on Add. Enter the name. Next is the type of application. Is it a web-based application? Or can it be installed on a user's device? For our demonstration we're going to go ahead and use the Web app. Then next, you're going to need a sign-on URL. Again, because I do not have an application that's up and running, I'm just going to use a demo URL.
Then simply click Create, and that's all there is to it, and now you can assign this application to your users as necessary. Now that our app has been created, we're going to go ahead and take a look at it. I'm going to scroll over just a little bit, and we see the properties for our application, so we can add in a new logo if we wish, we can do a homepage URL, a Logout URL, and you also have the option to select if this is a multi-tenanted application. Maybe you share this across different tenants.
I'm not going to save anything here, so I'm just going to go ahead and click OK. Next we have our owners. We could go ahead and add owners, and then we have our API access. We can go ahead and add in additional APIs. By default, Windows Azure Active Directory is already there. I'm going to go ahead and click Add, which I did, and then I'm going to select the API, and you're going to notice here that we have a couple different APIs that we can choose. I'm going to go ahead and select the Office 365, and then hit Select.
You'll now notice that I have permissions to do certain things using that API. If I wanted to go ahead and read activity reports for the organization, I could go ahead and select that. So you'll pick and choose the permissions that you're looking for, and then click Select. Then click Done. You'll see that the Office 365 Management API has been added to that application, and we can go ahead and grant the permission for the BennettDemoLOB for all the accounts in the current directory.
I'm going to go ahead and click No. I can simply just close these. If you do need keys, you can go ahead and create those. I'm going to quickly create one. I'm going to say it never expires, and I'm going to click Save. You'll notice the big orange banner. You will need to copy this key before you close this blade. If you close that blade, that key is gone. You will not be able to retrieve it.
I go ahead and close the blade. I come back into Keys. Yes we know there's the key there, but it is hidden, so keep that in mind, and that's all there is to adding in your own customized line of business applications into Azure Active Directory.
- Azure AD
- Adding company branding
- Adding a custom domain
- AD Connect configuration
- AD Connect Health
- Administering users and groups
- Configuring SaaS applications
- Granting conditional access
- Revoking access
- Application proxy and discovery
- Integrating web and desktop applications
- Creating an Azure AD B2C directory
- Registering an application
- Creating a Microsoft identity