Following are the steps to create an Azure AD application and granting permissions required by Cerebrata Cerulean.
Step 4: Create a new application registration.
You will be asked to provide some information for application registration.
- Application Name: For application name, please provide a name that can distinctly identify the application. For example, we used "Azure AD App for Cerebrata Cerulean".
- Application Type: For application type, please select "Native".
- Redirect URI: For redirect URI, please specify "urn:ietf:wg:oauth:2.0:oob".
Once you have provided this information, click on "Create" button to create the application.
Step 5: Note down the "Application ID".
Once you have created the application, you will be shown the details of the application. Please note down the application id as this will be used in Cerebrata Cerulean.
Once application id is copied to the clipboard, click on "Settings" button. You will be shown the details of the application. Next, click on "Required permissions".
Step 6: Add required permissions.
Currently Cerebrata Cerulean needs two permissions to be granted:
- Sign-in and read user profile.
- Execute Windows Azure Service Management API.
When an application is created, by default the 1st permission is granted so we just need to add 2nd permission. To do so, first click on "Add" button.
Then click on "Select an API".
Select "Windows Azure Service Management API" and then click on "Select" button.
Next, we need to set the permission.
Select "Access Azure Service Management as organization user (preview) and then click on "Select" button.
Press "Done" button to add the permission to execute Azure Service Management API for managing Azure Subscription on behalf of signed in user.
Once the process completes, you should see two delegated permissions as shown below.
That’s it. Now you’re ready to use this application with Cerebrata Cerulean. Please make sure that you have copied the "Application ID".