Create EDS Application in Azure

Create EDS Application in Azure

  1. Sign into the appropriate Azure tenant.
  2. Access Microsoft Entra ID:        
  3. Click “App registrations” in the sidebar, then click “New registration”:
  4. Enter a name for the application, i.e. EDS
    Under “Supported account types”, select “Accounts in this organizational directory only”
    Under “Redirect URI”, select Web and enter the URI:
    - <M1L domain for environment>/Business/Oidc/HandleOidcResponse
    - e.g. For customer called ACME, this will be: https://acme.my1login.com/Business/Oidc/HandleOidcResponse
    Click “Register”                                                                                                                                                                                                                   
  5. In the sidebar, click “Authentication”
    Under “Implicit grant and hybrid flows”, check both “Access tokens” and “ID tokens”
    Click Save                                                                                                                                                            
  6. In the sidebar, click “API permissions”
    Click “Add a permission”
    Click “Microsoft Graph”                                          
  7. Click “Delegated Permissions” and select the following:
    OpenId permissions:
    - email
    - openid
    - profile                                                                                                                                                                                                                                                                    
  8. Go back to the top of the pack and click “Application permissions”, then select the following:
    - AdministrativeUnit → AdministrativeUnit.Read.All
    - Group → Group.Read.All
    - User → User.Read.All
    Click “Add permissions”                                                                                                                                                                                                                                  
  9. Click “Grant admin consent for <tenant name>” and then click “Yes”

    • Related Articles

    • Finding EDS Configuration Values in Azure

      To configure the EDS, you need 3 values: The Tenant ID of the Entra Directory The Client ID of the application The Client Secret of the application Finding the Values Open Azure and select correct directory Navigate to Microsoft Entra ID page Click ...

    • Troubleshooting the EDS

      Sync Issues 1.1 Incorrect Configuration (Web) On My1Login web, the Entra Directory screen must be filled out with the following details: Tenant ID (needed to identify which Azure Tenant to sync from) Filter (needed to identify which Administrative ...

    • Entra Directory Sync (EDS)

      The Entra Directory Sync (EDS) is the application which syncs users in an Entra ID Directory with My1Login. Prerequisite: This guide assumes you have already registered the EDS application in Azure. If you haven’t please follow the guide below first: ...

    • EDS Requirements

      Technical Requirements Microsoft Entra ID Entra App Registration with privileges to read the directory Define AU or group objects to be synchronised My1Login Username & Password for Service Account Server Windows VM running in Azure 2 vCPU and 8GB ...

    • How the Entra Directory Synchroniser (EDS) works

      The My1Login Entra Directory Synchroniser (EDS) extends your Entra domain into the My1Login cloud Identity registry enabling seamless single sign on to the My1Login system. The EDS supports bi-directional communication using Web Sockets on port 443 ...