Get Started!

˂ Return to FAQ

In order for XTAM to reset Azure or Office 365 passwords, you will need to register a new application in your Azure Active Directory. Please review the following steps to create, register and properly permission the App in your Azure AD.

Note that an Azure Portal Administrator account is required for this procedure.

1

Login to your Azure Portal (https://portal.azure.com) using an Administrator account.

2

Locate and open the Azure Active Directory service. If you do not immediately see it in the left blade menu, click More Services and then enter Azure Active Directory in the filter box.

3

Open App Registrations in the Azure Active Directory menu.

XTAM Open Azure AD App Registrations

4

Click New Application Registration.

XTAM Create New Azure AD App

5

Enter a Name for the new App. The name could be anything you choose, however we would recommend something like XTAM Password Reset App so other Admins will recognize it. Select Application Type Native and Redirect URl http://graphclient. Click Create to continue.

XTAM Create Azure Active Directory App

6

Open your new app by clicking on it once it is created.

XTAM Select Azure AD App

7

From within the App settings, locate and open the Required Permissions menu.

XTAM Azure AD Require Permissions

8

In Required Permissions, click the Add button.

XTAM Azure AD App Add Required Permissions

9

Select the API Microsoft Graph and Enable Access (check the box) for the delegated permission Sign In and Read User Profile. Click Select to continue.

XTAM Microsoft Graph Enable Access

10

When both the API and Permissions have been selected, click Done on the Add API Access blade. Microsoft Graph will now appear in the Require Permissions table with 1 delegated permission.

XTAM Add Microsoft Graph API Access

11

Next we will need to modify the default Windows Azure Active Directory API. Click to select the Windows Azure Active Directory API. If it is not listed, click Add and then select it from the list of available APIs to continue.

XTAM Select Windows Azure AD Permissions

12

In the Windows Azure Active Directory Enable Access menu, select the following 2 permissions, Access the directory as the signed-in user and Sign in and read user profiles. Click Save to continue.

XTAM Windows Azure AD Enable Access

13

The Required Permissions for this App should now show Windows Azure Active Directory with 2 delegated permissions and Microsoft Graph with 1 delegated permission.

XTAM Azure AD App Permissions

14

In the Required Permissions menu, click the Grant Permissions button.

XTAM Azure AD Grant Permissions

15

Read and confirm the Grant Permissions description by clicking the Yes button.

XTAM Azure AD Grant Permissions

16

The configuration is now complete. Return back to this registered App’s Setting page, locate and copy the Application ID value.

XTAM Azure Active Directory Application ID

17

Login to XTAM with a Global Administrator account and navigate to Administration > Settings > Parameters.

18

Locate the field Azure App ID and paste here the App ID that was copied from Azure.

XTAM Azure App ID

19

Click the Save button to complete the operation.

XTAM Azure App ID Save

The configuration is now complete. At this point, we would recommend testing this password reset function on a test Azure Administrator or Office 365 Global Administrator account. If the password reset fails with a message about granting consent to the App, please review the steps again and ensure everything is setup correctly.

As always, if issues continue to arise please don’t hesitate to contact our Support Team.

 
 

Copyright © 2018 Xton Technologies, LLC. All rights reserved.