EasyManua.ls Logo

Avigilon ALTA - Set up Oauth Client (Service Principal) Authentication

Avigilon ALTA
144 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
SetupOAuthClient(ServicePrincipal)authentication
1. SignintoyourMicrosoftAzureaccountandregisteryourapplicationintheAzureportal.
1
2. SetupOAuthclient(serviceprincipal)authentication:
2
a. SelectyourapplicationintheAzureportal.
b. GototheCertificates&secretspageandselectClientsecrets(0).Setupyourclientsecret(also
knownasapplicationpassword).RecordtheSecretID(whichappearsonlythisonetime)ina
secureplace.
c. Setanexpirationperiodfortheclientsecret(forexample,180daysor6months).
Note:Syncingwill
stop
attheendoftheexpirationperiod.Remembertoupdatetheclient
secretbeforethisoccurs.
d. ConfigureyourapplicationpermissionsinConfiguredpermissions.Ataminimum,Group.Read.All
andUser.Read.AllmustbegrantedadminconsentintheAPI/Permissionsnamecolumn.
e. GototheOverviewpage.RecordtheApplication(client)IDandDirectory(tenant)IDtobeentered
intheControlCenter.
3. Gotocontrol.openpath.com/loginandsignin.ToaccesstheEuropeanControlCenter,goto
control.eu.openpath.com/login.
4.
Goto Appmarketplace>Myapps,andclickMicrosoftAzureADorMicrosoftAzureADAdvanced.
5. Microsoftwillpromptyoutosignin.SigninwithyourAzureADaccountandclickAccepttoallowthe
AvigilonAltasystemtoaccessyourusersandgroups.
Note:TheAvigilonAltasystemcanonlyreaddatafromyourAzureaccount;itcannotwritedataor
makeanychangeswithintheAzuresystem.ThetokentheAvigilonAltasystemusesonlyhasread
permissionsforAzureusers,groups,anddirectorydata.
6. Nowyoucanenablethefollowingsettings:
1
Formoreinformation,seeMicrosoftdocumentation:https://learn.microsoft.com/en-us/azure/active-directory/develop/howto-create-service-
principalportal
2
Forscreenillustrations,seeAvigilonAltaarticle:
https://openpath.atlassian.net/wiki/spaces/EHC/pages/2023391259/How+do+I+sync+users+using+OAuth+Client+Service+Principal+with+Microsoft+Azur
e+Active+Directory#service
App marketplace 108

Table of Contents

Related product manuals