Azure Entra ID

Azure Configuration

1. Create a Web Application Integration: In the Azure Entra ID Console under Applications click on App Registrations  and click on + New registration.
2. Give it a name: e.g. ScaleOps
3. Choose the Supported account types: Preferably choose Accounts in this organizational directory only, this would allow only users from your organization to login.
4. Configure Redirect URI:

• Choose Web as the platform.
• Use redirect URI https://auth.scaleops.com/login/callback.

5. Save the Client ID and Tenant ID: Record the Application (client) ID we are going to refer to it as CLIENT-ID in this doc and the Directory (tenant) ID we are going to refer to it as TENANT-ID in this doc.

6. Save the Client Secret: Click on Certificates & secrets and click on + New client secret, give it a description and click Add. We are going to refer to it as CLIENT-SECRET.

• Note: that the secret will be shown only once, so make sure to save it somewhere safe.
• Note: that when creating the secret you can choose when it will expire, make sure to ether choose Never or save in the calendar when you would need to replace it.

ScaleOps Configuration

• In the ScaleOps Cloud dashboard, go to Users > Configure SSO:

• Select Azure as the provider, and fill the form.

  Workspace Domain is your Azure Primary domain 

• Save Configuration

Groups Setup (Optional)

This allows you to automatically assign ScaleOps roles based on your existing Azure AD groups, streamlining user management and permissions.

• In the ScaleOps Cloud dashboard, go to Users > Edit configuration:
• Click on Grant Permissions to allow ScaleOps to read users and groups from your Azure Entra ID.
• This will open a new tab in the Azure portal, click on Accept to grant the application the required permissions to read the groups.
• On success you should see the following message:
• Close the tab and go back to ScaleOps

Validation

• Log out from ScaleOps Cloud
• Login using Continue with SSO button.