Login – Azure AD / Microsoft 365 (Office 365) integration

To integrate elevato login with Azure AD / Microsoft 365, you need to create a new application in the Azure Portal, give it the appropriate permissions and add the appropriate redirect, and then pass the application ID and secret key to elevato support.

1. Log in as an administrator in the Azure Portal ( https://portal.azure.com/#home ) and select Microsoft Entra ID :

2. Then go to the Application Registration page :

3. In the next step, add a new registration by clicking New Registration at the top of the page:

4. Complete the required fields:

5. After clicking Register you will be redirected to the main page of the application:

6. Go to the Certificates and Secrets tab :

7. Click New Client Secret :

8. Enter a unique name and specify the validity of the key:

9. In the next step, we copy the displayed key value - this is important because it can only be displayed once, then it must be generated again.

10. Go to the API Permissions tab :

11. The table displays the permissions granted to the application – by default, these are User.Read permissions to log in and to read the user's own profile:

12. To prevent users from having to accept the granting of permissions when logging in, approve the application permissions as an administrator for all users in the organization – click I give administrator consent for the *** directory :

The application should be available to all users who use elevato. Simply enabling integration will not give all company employees access to elevato – in elevato, the administrator must add users in the appropriate roles independently of Azure AD.

For the integration to work, you must provide the following details to elevato support:

After providing all required data, we will make changes to the elevato system and arrange to test the correctness of the login.
​