Get required information for your Microsoft Azure AD realm (active authentication only)

This task explains how to get the information required to set up a Microsoft Azure AD realm (now called Entra ID) in the Cloud-Delivered Firewall Management Center.

Follow these steps to get required information for your Microsoft Azure AD realm:

Procedure

Step 1

Log in to https://portal.azure.com/ as a user with at least the Product Designer role.

  1. At the top of the page, click Microsoft Entra ID.

  2. In the left column, click App Registrations.

  3. If necessary, filter the list of displayed apps to show the one you want to use.

  4. Click the name of your app.

    Get the client credentials from Entra ID's app registrations page

  5. Click Copy (copy icon) next to the following values on this page and paste those values to a text file.

    • Application (Client) ID

    • Directory (tenant) ID

  6. Click Client Credentials.

Step 2

Unless you already know the client secret value (as opposed to the client secret ID), you must create a new client secret as follows:

  1. Click New Client Secret.

  2. Enter the required information in the provided fields.

  3. Click Add.

  4. Click Copy (copy icon) next to Value as the following figure shows.

    Copy the client secret to the clipboard

Step 3

From https://portal.azure.com/, click Event Hubs > (name of an event hub).

  1. In the right pane, click Copy (copy icon) next to the value of Host name and paste the value to the clipboard. This is your event hub host name.

    Copy the even hubs host name to the clipboard

  2. Write down or copy to a text file the name of the event hub (same as the Event Hubs Namespace at the top of the page).

  3. In the left pane, under Settings, click Shared access policies.

  4. Click the name of a policy.

  5. Click Copy (copy icon) next to Connection string-primary key.

    Copy the event hugs connection string to the clipboard

Step 4

Click Overview > Entities > Event Hubs > (name of an event hub) > Entities > Consumer Groups.

Write down the following value or copy it to the clipboard. This is your consumer group name.

Copy the consumer groups name to the clipboard

Step 5

In the left pane, click Overview.

Step 6

Click Copy (copy icon) next to Namespace.

Copy the event hubs topic name to the clipboard

This is your event hubs topic name.

Step 7

Return to the home page and log in if necessary: https://portal.azure.com/#home.

  1. Click Microsoft Entra ID.

  2. In the left pane, click Enterprise Applications.

  3. If necessary, filter the list of applications to locate yours.

  4. Click the name of your enterprise application.

  5. Click Get Started under Set up single sign on.

  6. On your SSO app page, copy the value of Identifier (Entity ID) to the clipboard.

    The following figure shows an example.

    Copy the entity ID to the clipboard

  7. On your SSO app page, click the Download link next to Federation Metadata XML, as this figure shows.

    The following figure shows an example.

    Copy the Federation Metadata XML to the clipboard

  8. If you've already set up your SSO app, you can stop here. The Federation Metadata XML contains all the information required to configure the identity provider in the Cloud-Delivered Firewall Management Center.

  9. (Optional if you already downloaded the federation XML.) Click Copy (copy icon) next to both of these values and save them to a text file.

    This figure shows an example.

    Copy the values of Login URL and Microsoft Entra Identifier to the clipboard

What to do next

See Create a decryption rule with decrypt - resign action.