Create Application Registration Automatically using Invitation Wizard
This procedure describes how to create a new Application registration connection between Live Platform and the customer M365 Azure tenant platform using the Invitation wizard. Once created, you can use the same registration to add additional Direct Routing services to your customer. A new secret should be created for each new service.
Assign the Application Administrator role to the customer tenant M365 admin prior to running Invitation wizard.
Once you create the initial registration, you can then use the credentials of this registration to add additional services using the following methods:
| ■ | Send email link to Invitation wizard: Secure Connection using Existing Registration with Email Link |
| ■ | Enter Application (Client) ID and secret of the Application Registration directly from the Onboarding wizard: Use Existing Application Registration |
| ➢ | Do the following: |
| 1. | Click Create New App Registration. |
| 2. | Enter the username of the M365 admin user (Application Administrator role or higher) to create the App Registration for securing the connection. |
| 3. | Do one of the following: |
| ● | Copy the code and then click the URL link below it. |
| ● | Click Copy code and open page in new tab. |
| 4. | Click Next or enter code if you clicked the ....device/login link above. |
| 5. | Enter credentials of the Admin account of the M365 tenant. |
| 6. | Click Continue. |
| 7. | Close the dialog. A confirmation message is displayed that the connection has been successfully established. |
| 8. | Enter the name of the Application Registration. The name should comply with the following rules: |
| ● | The string should be 3-15 characters long |
| ● | The following characters cannot be used: \ / : * ? " < > |audit |
| ● | Can contain letters (lower/UPPER case), Numbers and special characters are allowed, however cannot contain the dot (.) or blank spaces. |
| ● | Unique name per Service (check regarding ) |
| 9. | Open the Onboarding wizard (Direct Routing > Add Service). |
| 10. | Click Pending Invitations. |
| 11. | Click Add. Notice that the new registration details are displayed. |
| 12. | Click Next. The tenant credentials are validated. |
| 13. | Click Next. |
| 14. | Complete the Onboarding wizard for the creation of the service (see Onboarding with Hosted Essentials + and Onboarding with Hosted Pro). |
| 15. | Open the Service portal for the new service (Direct Routing > Edit Service). |
| 16. | Navigate to the Microsoft 365 Settings page (Configuration > M365 Configuration). |
| 17. | Click Validate Authentication to validate the credentials of the tenant service with the App Registration. The Client Secret Days Until Expire value is displayed once the secret has been set for the first time. |
| 18. | Open the Azure portal and in the Navigation pane, select App Registrations. |
| 19. | Search for your new Token Application Registration, and then in the Navigation pane, select Manage > API permissions. View the new permissions created by the automatic script. |
| 20. | Remove all of the above permissions as they are not required . |
| 21. | If you wish to create additional service using the same registration, you must generate a separate additional Client secret. In the Navigation pane, select Manage > Certificates & Secrets. |
| 22. | Click New client secret. |
| 23. | Copy the secret value to notepad. |
| 24. | In the search box in the Menu bar, type Microsoft Entra Roles and administrators. |
| 25. | Search for the specific roles to add or remove according to the table above. |