To ensure successful integration between NDD Print Portal 360 and a domain that uses Microsoft Entra ID, you must perform some configurations in Azure AD that will enable full integration.
Below are the minimum configuration prerequisites in Azure AD for integration to be possible.
Azure AD environment
Create an application
When you register an application in Azure AD, a trust relationship is established between the application and the Microsoft identity platform. For this reason, it is necessary to register an application in the Azure AD environment
https://learn.microsoft.com/en-gb/entra/identity-platform/howto-create-service-principal-portal
Defining permissions for the application registered in Azure AD
Applications are authorised to call APIs when they receive the appropriate permissions. The following is a list of permissions required for integration with NDD Print Portal 360
aplicativos |
|---|
Application.ReadWrite.All | Type | APPLICATION |
|---|
Description | Allows you to read, update, delete, and perform actions on access reviews, reviewers, decisions, and settings in the organisation without a user being logged in. |
|
Application.ReadWrite.OwnedBy | Type | APPLICATION |
|---|
Description | Allows the application to create other applications and manage them completely (read, update, update secrets, and delete applications) without a user being logged in. |
|
Directory.Read.All | Type | APPLICATION |
|---|
Description | Allows the application to read data in your organisation's directory, such as users, groups, and applications, without a user being logged in. |
|
email | Type | DELEGATE |
|---|
Description | Allows the application to read the primary email address of your users. |
|
Group.Read.All | Type | APPLICATION |
|---|
Description | Allows the app to read group properties and associations and read conversations from all groups without a user being logged in. |
|
GroupMember.Read.All | Type | APPLICATION |
|---|
Description | Allows the application to read groups and basic group properties for all groups without a user logged in. |
|
OpenId | Type | DELEGATE |
|---|
Description | Allows the application to read groups and basic group properties for all groups without a logged-in user. |
|
Organization.Read.All | Type | APPLICATION |
|---|
Description | Allows the application to read the organisation and related resources without a user logged in. |
|
Policy.ReadWrite.ApplicationConfiguration | Type | APPLICATION |
|---|
Description | Allows the app to read and write your organisation's app configuration policies without a user being logged in. |
|
User.ManageIdentities.All | Type | APPLICATION |
|---|
Description | Allows the application to read, update, and delete identities associated with a user account without a user being logged in |
|
User.Read.All | Type | APPLICATION |
|---|
Description | Allows the application to read user profiles without a user logged in. |
|
User.ReadWrite.All | Type | APPLICATION |
|---|
Description | Allows the application to read and update user profiles without a user logged in. |
|
Information for integrating Microsoft Entra ID with NDD Print Portal 360 |
|---|
After completing the application registration, the Microsoft Entra administration centre will display some information on the Overview panel. The following information is required to complete the domain registration on NDD Print Portal 360 Application ID (client) Application domain Directory ID (tenant) Client secret
|
