Registering an Application in The Microsoft Identity Platform

In today’s digital age, secure authentication is the cornerstone of any application’s success. Microsoft Identity Platform offers a powerful and flexible way to integrate authentication and authorization into your applications, leveraging Microsoft’s vast identity and security infrastructure. Whether you're developing a web app, mobile app, or a single-page application, this guide will help you navigate through the registration process, configure authentication, define API permissions, and securely generate client credentials.

Registering the Application:-

To get started, follow these steps to register your application in the Microsoft Entra Admin Center.

1. Configure Authentication Settings

• Access Authentication: In the Microsoft Entra Admin Center, go to Application → App registrations → New Registration.
• Type a display name for this application
• Choose the Supported account types
• Choose the platform relevant to your application:
• Web: For browser-based applications.
• Single-page application (SPA): For frameworks like React, Angular, or Vue.js etc.
• Mobile and Desktop: For native mobile apps or desktop applications.
• Public client (mobile & desktop): For public clients without a confidential client secret.

Enter Redirect URIs (optional)

• This will return the authentication response to this URI after successfully authenticating the user
• Ensure the Redirect URI matches the URL configured in your application code.

2. Define API Permissions

To allow your application to access Microsoft APIs like Microsoft Graph, you need to define the required permissions.

• Navigate to API Permissions: Go to API permissions in the left menu.
• Add Permission: Click "Add a permission" and select "Microsoft Graph" or another required API.
• Choose Permissions: Select the necessary Delegated or Application permissions.
• Admin Consent: If needed, click "Grant admin consent for [Your Organization]".

3. Generate Client Credentials

For your application to authenticate securely, it needs client credentials. These can be either Client Secrets or Certificates.

• Go to Certificates & Secrets: Navigate to "Certificates & secrets".
• Create New Client Secret: Under Client secrets, click "New client secret".
• Description and Expiration: Enter a description and set the expiration period.
• Save and Record: Click "Add" and copy the Value.

 Step 4: Collect Required Details

Gather the following identifiers from the Overview section:

• Application (client) ID – Identifies your application in Azure AD.
• Directory (tenant) ID – Represents your organization’s Azure AD instance.

These identifiers are essential for configuring authentication in your application code.

Step 5: Finalize and Test Your Application

Review Configuration

• Double-check all configured settings:
• Authentication: Redirect URIs, implicit grant settings.
• API Permissions: Correct scopes and consent granted.
• Client Credentials: Secrets or certificates are valid and securely stored.

Conclusion

By following these steps, you’ve successfully configured authentication and API permissions, enabling your application to securely interact with Microsoft services.