Book Demo!

˂ Return to FAQ

New Xton Documentation Center
Xton help has moved. Please visit the current version of this page for the most recent updates. Our new documentation center can be found at

In order for XTAM to reset Azure or Office 365 passwords, you will need to register a new application in your Azure Active Directory. Please review the following steps to create, register and properly permission the App in your Azure AD.

Note that an Azure Portal Administrator account is required for this procedure.


Login to your Azure Portal ( using an Administrator account.


Locate and open the Azure Active Directory service. If you do not immediately see it in the left blade menu, click More Services and then enter Azure Active Directory in the filter box.


Open App Registrations in the Azure Active Directory menu.

XTAM Open Azure AD App Registrations


Click New Application Registration.

XTAM Create New Azure AD App


Enter a Name for the new App. The name could be anything you choose, however we would recommend something like XTAM Password Reset App so other Admins will recognize it. Select Application Type Native and Redirect URl http://graphclient. Click Create to continue.

XTAM Create Azure Active Directory App


Open your new app by clicking on it once it is created.

XTAM Select Azure AD App


From within the App settings, locate and open the Required Permissions menu.

XTAM Azure AD Require Permissions


In Required Permissions, click the Add button.

XTAM Azure AD App Add Required Permissions


Select the API Microsoft Graph and Enable Access (check the box) for the delegated permission Sign In and Read User Profile. Click Select to continue.

XTAM Microsoft Graph Enable Access


When both the API and Permissions have been selected, click Done on the Add API Access blade. Microsoft Graph will now appear in the Require Permissions table with 1 delegated permission.

XTAM Add Microsoft Graph API Access


Next we will need to modify the default Windows Azure Active Directory API. Click to select the Windows Azure Active Directory API. If it is not listed, click Add and then select it from the list of available APIs to continue.

XTAM Select Windows Azure AD Permissions


In the Windows Azure Active Directory Enable Access menu, select the following 2 permissions, Access the directory as the signed-in user and Sign in and read user profiles. Click Save to continue.

XTAM Windows Azure AD Enable Access


The Required Permissions for this App should now show Windows Azure Active Directory with 2 delegated permissions and Microsoft Graph with 1 delegated permission.

XTAM Azure AD App Permissions


In the Required Permissions menu, click the Grant Permissions button.

XTAM Azure AD Grant Permissions


Read and confirm the Grant Permissions description by clicking the Yes button.

XTAM Azure AD Grant Permissions


The configuration is now complete. Return back to this registered App’s Setting page, locate and copy the Application ID value.

XTAM Azure Active Directory Application ID


Login to XTAM with a Global Administrator account and navigate to Administration > Settings > Parameters.


Locate the field Azure App ID and paste here the App ID that was copied from Azure.

XTAM Azure App ID


Click the Save button to complete the operation.

XTAM Azure App ID Save

The configuration is now complete. At this point, we would recommend testing this password reset function on a test Azure Administrator or Office 365 Global Administrator account. If the password reset fails with a message about granting consent to the App, please review the steps again and ensure everything is setup correctly.

As always, if issues continue to arise please don’t hesitate to contact our Support Team.


Copyright © 2020 Xton Technologies, LLC. All rights reserved.