Skip to main content

OrgChart Help Guide

Azure AD Configuration

Audience

Audience: Administrators

Overview

The following article provides step-by-step instructions for preparing your Azure AD tenant for OrgChart integration.

Important

In order to complete the following configuration steps, you will need the following Azure AD permissions:

  • Application Administrator

  • Cloud Application Administrator

  • Privileged Role Administrator

Azure AD Connector Configuration

OrgChart connects to your Azure AD account using a client ID and secret. To obtain these credentials, follow the steps below.

  1. Log in to Azure AD.

  2. Navigate to the Azure Active Directory resource.

  3. Click on the + Add button, and then select App Registration from the dropdown menu.

    AzureAD_AppReg.jpg

  4. Enter a name for the application in the Name text box (i.e OrgChart Application).

  5. Select the radio button next to the access option that best fits your needs (under the Supported Account Types heading).

    AzureAD_AccountTypes.png

    Note

    Click on the Help me choose... hyperlink to display a side panel detailing the different account types.

  6. Click on Register. Your application details are displayed.

    AzureAD_AppDetails.png

  7. Click on the Certificates & Secrets option in the left-hand side panel to configure your client secret key. This key acts as another level of security for the API.

    AzureAD_ClientSecret_Select.png

  8. Click on the + New client secret button.

  9. Enter a description for the client secret in the Description text box.

  10. Click on the Expires dropdown menu, and then select an expiry date (i.e 1 year).

  11. Click on Add. The Client Secret is displayed.

    AzureAD_ClientSecret.png

  12. Copy the Client Secret Value, and then paste it to your Notepad. You will need this information to finalize your connection in OrgChart.

    Important

    This is the only time you will be able to copy this key.

  13. Click on the API Permissions option in the left-hand side bar.

    AzureAD_API_Permissions_Select.png

  14. Click on + ADD a permission, and then click on Microsoft Graph under the Microsoft APIs tab.

    AzureAD_RequestAPIPermissions.png

  15. Click on Application Permissions.

  16. Scroll down to User, and then click to expand the options.

  17. Check the User.Read.All checkbox, and then click Add Permission.

    AzureAD_User_Read_All.png

  18. Click on Grant Admin Consent for your company.

    AzureAD_Grant_admin_permission.png

    Note

    If this option is not clickable, you do not have sufficient permissions to grant admin consent to this application. Contact your Azure AD System Administrator to add the three admin roles listed at the top of this article.

  19. Click on Yes to confirm the admin consent.

  20. Follow the instructions in the Azure AD Connector Setup article to complete your integration in OrgChart.