Versions Compared

Version Old Version 12 New Version 13
Changes made by

Andrea Harvey

Andrea Harvey

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  1. Log into your Microsoft Azure account using an administrator account.

  2. Select Azure Active Directory.

  3. Select Add and select App registration.

  4. Enter a name for the app in the Name field.

  5. Under Supported account types, select Accounts in this organizational directory only ([company name] only- Single tenant).

  6. Select Register.

  7. Under Mange , select Authentication.

  8. Set the Enable the following mobile and desktop flows option at the bottom of the page to Yes.

  9. Select Save at the top of the page.

    Image RemovedImage Added

  10. Under Manage, select API Permissions.

  11. Select Add a permission.

    Image RemovedImage Added

  12. In the Request API Permissions panel, select Azure Rights Management Services.

    Image RemovedImage Added

  13. Select the Delegated permissions option.

  14. Select the user_impersonation box.

  15. Select Add permissions.

  16. You will be back on the API Permissions Page. Select Add a permission again.

  17. Select APIs my organization uses.

  18. In the search box, type “Microsoft Information Protection Sync Service” and select this option in the results list.

    Image RemovedImage Added

  19. Select Delegated permissions.

  20. Select the UnifiedPolicy.User.Read box.

  21. Select Add permissions.

    Image RemovedImage Added

  22. Select Grant admin consent for [company name]​."

  23. Select Yes when prompted to confirm you want to grant admin consent.

  24. Select Overview.

  25. Copy the Application (client) ID and the Directory (tenant) ID. Both are needed for the extension configuration.

...