Machine to Machine

Connect Azure AD (Machine to Machine) to Zluri

Zluri lets you discover which users have Azure AD accounts, how frequently they use them, third-party apps connected to accounts, and detailed security analysis of every application. It also helps optimize spendings based on this data.

Prerequisites

  • Cloud Application Administrator or higher privileges in Azure AD

Integration steps

Register a new application in Azure AD

  1. Log in to the Entra ID portal.

  2. Navigate to Identity Applications App registrations and select New registration.

  3. Give your app a name and choose "Accounts in this organizational directory only".

  4. Click Register.

Create client secret

  1. Navigate to Certificates & secretsClient secrets and click ➕ New client secret.

  2. Give the secret a name and set an expiry date. Click Add.

  3. Copy and securely store the string under the Value column. We will later use this string as the Client Secret while connecting.

Add API permissions

  1. Navigate to API permissions and add the following permissions:

    1. Reports.read.all
    2. Auditlog.read.all
    3. Directory.read.all.

  1. Click Add permissions.

  2. Click Grant admin consent, then click Yes to confirm.

  3. Navigate to the Overview page. It will display the Application (client) ID, and Directory (tenant) ID. Keep these two handy for the next steps.

Connect the Azure AD (Machine to Machine) instance in Zluri

  1. Open the Integrations Catalog, search for “azure”, and click ➕ Connect under Azure AD (Machine to Machine).

  2. Select the scopes you wish to add and click Continue. You can click the down-arrow button towards the right of a scope to find out what it does.

  3. Fill out the entries as follows:

    1. Client ID: Value of Application (client) ID created while adding API permissions
    2. Client Secret: The string under the Value column obtained while creating the client secret
    3. Tenant ID: Value of Directory (tenant) ID created while adding API permissions
  4. Give the connection a name and description, and you’re ready to go!

Got questions? Feel free to submit a ticket or contact us directly at [email protected].