Skip to main content

Azure AD

The following placeholders will be used:

  • tidecloak.company is the FQDN of the Tidecloak install.

Azure setup

  1. Navigate to portal.azure.com, and open Azure Entra ID.
  2. Add an App registration service
  3. Register a new application Under Supported account types , select whichever account type applies to your use-case.
  4. Take note of theApplication (client) ID value. If you selected Single tenant in the Supported account types prompt, also note theDirectory (tenant) ID value.
  5. Navigate to Certificates & secrets in the sidebar, and to the Client secrets tab.
  6. Add a new secret, with an identifier of your choice, and select any expiration. Currently the secret in authentik has to be rotated manually or via API, so it is recommended to choose at least 12 months.
  7. Note the secret's value in the Value column.