# Azure Active Directory

Administrator login can be tied to Azure Active Directory. This allows customers to use the Azure Portal as source of Single Sign On logins. When this feature is enabled, logins can be redirected to the Microsoft authentication service. When a user logs in through Azure Active Directory, a administrator account is automatically created if one did not exist.

Note

This feature is only available for web portal administrator logins.

# Create App Registration

  1. In the Azure portal, click All services. In the list of resources, select App registrations.

  2. Click New Registration

  3. Enter a Name for your App registration.

  4. Under Redirect URI, enter a URL in the following format: https://<VIRTUAL_MACHINE_PUBLIC_IP>/#/.

For example https://52.14.23.18/#/ or https://ftp.mycompany.com/#/

  1. Click Register.

  2. On the Overview page, note the Application (client) ID and the Directory (tenant) ID.

  3. Click Authentication in the sidebar under Manage.

  4. In the Web panel, under Implicit grant, check the box for ID tokens.

  5. Click Save.

# Grant Users Access in Active Directory

  1. In the Azure portal, click All services. In the list of resources, select Azure Active Directory.

  2. Click Enterprise applications in the sidebar under Manage.

  3. Click on the application you registered in the previous section.

  4. Click User and groups in the sidebar under Manage.

  5. Click Add user.

  6. Click Users.

  7. Select a user and click Select.

  8. Click Assign.

# Configure FileMage Gateway

  1. Add the following settings from the App Registration section to the application configuration file :
azure_active_directory:
  client_id: <APPLICATION_CLIENT_ID>
  tenant_id: <APPLICATION_TENANT_ID>