Configuring a SOTI MobiControl Microsoft Entra ID Tenant Connection and an On-premise App

Before you begin

Complete the steps in Creating and Configuring the On-Premises Application in Microsoft Entra ID.

About this task

This task guides you through setting up the SOTI MobiControl Microsoft Entra ID tenant connection and configuring the on-premises application. This task involves the following:
  1. Adding a Microsoft Entra ID Tenant Connection: Establishes the link between SOTI MobiControl and Microsoft Entra ID, allowing directory services to authenticate users.
  2. Configuring the On-Premises Application: Enables SOTI MobiControl to communicate with Microsoft Entra ID and use the registered on-premises application for device management.

Adding a Microsoft Entra ID Tenant Connection

About this task

Establish a link between SOTI MobiControl and Microsoft Entra ID, allowing directory services to authenticate users.

Procedure

  1. From the main menu on the SOTI MobiControl web console, navigate to Global Settings > Services > Directory and select (Add) in the Microsoft Entra ID section.
    Adding a Microsoft Entra ID directory connection.
  2. In the Microsoft Entra ID Connection screen, give a name for the connection.
  3. Enter a Name and the Microsoft Graph API Address (added by default), then select (Add).
    Adding details for the Microsoft Entra ID tenant.
  4. Select to add a Microsoft Entra Tenant.
    1. Enter a Name for the Tenant ID Configuration.
    2. Enter the Primary Domain and the Microsoft Entra tenant ID. You can find these in the Primary domain and Tenant ID fields in the Microsoft Entra ID Overview in Azure (see below).
      Microsoft Entra ID connectionOverview screen in Azure AD
    3. Enter the Metadata Endpoint Address from Microsoft Entra ID in Mobility (MDM and MAM). Select the on-premises application, then navigate to On-premises MDM application settings > Endpoints and refer to the Federation metadata document field.
      Microsoft Entra ID onpremises MDM applications settings.Microsoft Entra ID Endpoints screen.

Results

You have configured your Microsoft Entra ID tenant connection.

Configuring the On-Premises Application

About this task

Enables SOTI MobiControl to communicate with Microsoft Entra ID and use the registered on-premises application for device management.

Procedure

  1. Select in the Custom Azure Applications section, then enter the following fields:
    1. Enter an Application Name for the application.
    2. Enter the Client ID for the application from the Microsoft Entra ID in Mobility (MDM and MAM). Select the on-premises application, then navigate to On-premises MDM application settings and refer to the Application (client) ID field.
      Azure AD On-Premises MDM application settings.
    3. Enter the Client Secret for the application from the Microsoft Entra ID in Mobility (MDM and MAM). Select the On-Premises application, then navigate to On-premises MDM application settings > Certificates and Secrets.
      Microsoft Entra ID Certificates and Secrets screen.
  2. Select Save to save your Azure configuration.

Results

You have configured your on-premises app.

What to do next

Complete the steps listed in Creating an Enrollment Policy for an Entra Join (On-premises) Enrollment Type.