/
Microsoft Entra ID for enaio Gateway NG

Microsoft Entra ID for enaio Gateway NG

Owned by Michael Peschke (Unlicensed)
Last updated: Apr 04, 2025 by Technische Redaktion
2 min read

Responsibility: Customer 

The Entra app enaioGateway is used by the enaio Gateway NG to authenticates requests by users and apps against the Microsoft Entra ID.

AAD: App registration

Create app

  1. Create an app registration with following settings:

    1. Specify a name i.e. enaioGatewayApp

    2. Single tenant account

    3. WEB redirect URL https://your.domain/login/oauth2/code/azure
      It is assumed, that enaio Gateway NG processes requests for https://your.domain.

Token Configuration

  1. Add following claims:

    1. ID: preferred_username

    2. ID: upn

  2. Add required permissions on request.

API permissions

  1. Ensure that the following API permissions have been added:

    1. delegated: Microsoft Graph => email

    2. delegated: Microsoft Graph => openid

    3. delegated: Microsoft Graph => profile

    4. delegated: Microsoft Graph => User.Read

  2. If not all these permissions have been set, use Add a permission for the required API.

  3. Grant admin consent to avoid that users must grant the permission for this app on first access.

     

Generate Secrets

  1. Define a name and lifetime for the new secret.

  2. After creation, make a note of the secret by copying the value of the field Value.

    image-2025-1-2_8-12-31.png

    The value property won't be accessible later and only be shown as in the picture above.

     

 

 

 

Related content