Obtaining your credentials for integrating Smart Access Management with Microsoft Entra ID

You can configure Smart Access Management to integrate with Microsoft Entra ID. This was previously known as Azure Active Directory.
Products Affected: Smart Access Management®

You can configure Smart Access Management to integrate with Microsoft Entra ID. This was previously known as Azure Active Directory.

You will need to obtain the following credentials from Microsoft Entra ID. You will need to contact your IT department for this information.

  • Tenant ID
  • Client ID
  • Client Secret

Finding your Tenant ID

  1. Sign into the Microsoft Entra ID portal. Your IT department will have their credentials.
  2. From the homepage, click Microsoft Entra ID and copy the Tenant ID.
    Tenant ID

Create a new app registration and Client ID

  1. From the left-hand pane, click App registrations and then click New registration.
    App registrations
  2. Name the new registration Smart Access Management.
  3. For Supported account types, select Accounts in this organizational directory only (Default Directory only – Single tenant) and click Register.
    Supported account types
  4. Copy the new Client ID.
    Client ID

Create a new client secret

  1. From within the new app registration, click Certificates & secrets and then click New client secret.
    sam-certificates-secrets_850x314
  2. Enter a description of Smart Access Management secret, select an expiration value and click Add.
    Add client secret
  3. Copy the new client secret Value. The client secret will not be visible if you return to this page later.
    New secret value

Set API permissions

  1. From the left-hand pane, click API permissions and then click Add a permission.
    API Permissions
  2. Click Microsoft Graph.
    Microsoft graph
  3. Click Application permissions.
    Request API Permissions
  4. Scroll down and expand Directory, select Directory.Read.All and click Add permissions.
    Directory read all
  5. The status of the new permission may initially display as Not granted for <name here>.
    Not granted for default directory
  6. In which case wait a minute and then click Grant admin consent for <name here> and click Yes to confirm.
    Grant admin consent
    Grant admin consent confirmation
  7. The status should then display as Granted for <name here>.
    Grant consent

Configure Smart Access Management

  1. Sign in to the Smart Access Management website., click Settings and then click Integrations.
    Integrations option
  2. Complete the fields as shown and click Save.
    Integrations menu

UPDATED: 16 October 2023