Page created: 24 Jul 2019 |
Page updated: 8 Feb 2022
Add an application to Azure Active Directory to create and expose Microsoft Graph API endpoints for provisioning.
- Complete the steps in Register an application with the Microsoft identity platform in the Microsoft identity platform documentation.
- Note your Azure application ID and secret.
To allow the provisioner to manage all users, including deleting users or modifying
administrators, assign the "User administrator" role to your Azure AD
- Complete the steps in "Authorization_RequestDenied" error message when you try to change a password if you use Graph API in the Microsoft documentation.
Add the following application permissions to your application by completing the
steps in Add permissions to access web APIs: