Collect Microsoft Entra ID configuration information
- Last UpdatedMay 06, 2026
- 2 minute read
To use Microsoft Entra ID as an authentication provider, you need to collect the following information:
-
Client ID: The application (client) ID from the Essentials section on the Overview page of the application in the Azure portal.
-
Endpoint: This refers to the OpenID Connect metadata document from the Endpoints section on the Overview page of the application in the Azure portal. Do not include the portion of the OpenID Connect metadata after "v2.0."
-
Client secret: The secret value created for the application. If you did not save the value when creating your application, create a new secret from the Certificates & Secrets page of the Azure portal. If the value is not displayed, it cannot be cannot retrieved.
Collect Microsoft Entra ID configuration information
-
Sign in to the Microsoft Entra ID home page at https://portal.azure.com.
-
Select App registrations from the Resource menu.
A list of the apps that belong to you or your organization is displayed.
-
In the Essentials section, locate Application (client) ID, and then copy and save the value.
You need this ID to configure the System Management Server.
-
From the Command bar, select Endpoints, and then select OpenID Connect metadata document.
The portion of the OpenID Connect information after "v2.0" is not used when configuring AVEVA Identity Manager. Thus, the endpoint used to configure AIM is https://login.microsoftonline.com/<tenantID>/v2.0. The trailing slash is not needed.
-
From the Command bar, select Certificates & Secrets, then select New Client Secret.
-
Add a Description for the new client and select a time period from Expires for client secret lifespan.
-
Select Add to save the secret.
-
Copy and save the client secret value.
You need this value to configure the System Management Server (the secret ID is not needed for configuration).
Note: Save the secret value after adding the secret. You cannot retrieve the value later.