Adding an Azure Directory Service Connection

Before you begin

This process requires:

  • A Microsoft Azure account
  • Access to Azure Portal
  • Authentication of SOTI MobiControl with your Microsoft Azure account. See Microsoft Azure documentation for more information.
  • Azure AD Join Cloud Enrollment listed in default applications

About this task

Use the following process to add an Azure directory service connection to SOTI MobiControl.

Procedure

To begin, you must collect configuration information from Azure Portal.
  1. Open your Azure Portal (https://portal.azure.com).
  2. Select Azure Active Directory.
  3. In the Overview tab, copy the following information for later use:
    • Tenant ID
    • Primary Domain
  4. In the left-hand menu, select App registrations. The App registrations view opens.
  5. Select Endpoints. The Endpoints window opens.
  6. Copy the Federation metadata document URL.
Next, add the Azure tenant.
  1. From the main menu, select Global Settings > Services > Directory. The Directory view opens.
  2. In the Azure Directories panel, select Add. The Azure Directories window opens.
  3. In Name, enter a short descriptive name for the connection.
  4. In Azure Tenant, select Add. The General Details panel for the Azure tenant displays.
  5. Enter values for the following fields:
    Name A short descriptive name for the tenant.
    Azure Primary Domain The primary domain from Azure Portal.
    Azure Tenant ID The tenant ID from Azure Portal.
    Metadata Endpoint Address The federation metadata document URL from Azure Portal.
    OIDC Metadata Endpoint Address The OpenID Connect metadata endpoint address refers to the OpenID Connect metadata document endpoint in Azure and is an optional additional authentication protocol. Microsoft provides it when you sign up for Azure AD.
    Note: This is an optional setting.
  6. Select Save.
    The tenant is available for selection to complete the connection.
Complete the connection details.
  1. From Azure Tenant, locate and select the tenant name.
  2. From Application Name, select Azure AD Join Cloud Enrollment.
  3. Select Save. The Microsoft Sign In dialog displays.
  4. Select Continue.

Results

The Azure directory connection is available.

What to do next

Complete the steps in Creating an Enrollment Policy for an Azure AD Join (Cloud) Enrollment Type.