Creating an App Registration in Entra ID

This guide explains how to create an App Registration in Entra ID, a necessary step for enabling Adcyma to communicate with Entra ID (and optionally Exchange).

Application Administrator role is required to complete this task.

Expand Manage in the left menu and click on "App Registration," followed by "New Registration," as shown in the image below.

Next, choose a suitable name for the App Registration, such as "Adcyma" and then click "Register".

Navigate to Certificates & secrets, choose Client secrets, and click New client secret.

Give the Client secret a suiting description, and an expiration of your liking (remember to keep track of the expiration). Next click "Add".

Afterward, make note of the Client secret (this is the only time it will be visible) and the Secret ID. Adcyma requires this information, along with the Tenant ID, to communicate with your Tenant.

Next, we need to give the correct API permissions, this is done by navigating to API permissions, clicking on Add a permission and then choosing Microsoft Graph.

Then, select Application Permission.

Now, locate User.ReadWrite.All (this permission is required for Adcyma to manage your Entra ID users).

Another required permission is Group.ReadWrite.All for managing your groups. Be sure to add this as well.

As an optional step, only needed if you want Adcyma to manage Exchange tasks such as converting user mailboxes to shared mailboxes, you can add permissions for Exchange management. To do this, go to APIs my organization uses and select Office 365 Exchange Online from the list.

Select Application permissions and choose Exchange.ManageAsApp in the list.

The App Registration is now complete, with the necessary permissions and Client Secret configured.