Deploy Live Platform Portal Application to Customer Tenant

For logging into Live Platform portal, you should designate an existing M365 tenant user or create a new user for this purpose. You must then login to the Live Platform portal with the credentials of this user. In the process, an Enterprise Application is added under the customer tenant, for example, ‘LTC-OVOC-Sandbox1’. You must then login to the Microsoft Entra ID with M365 tenant Admin or Service account permissions, navigate to this Enterprise application and assign one of the following Live Platform roles to this user:

Admin
Lite Operator
Monitor
Operator

The designated user does not require the assignment of any Microsoft Entra ID roles.

Do the following:
1. Enter the link for the Live Platform portal – DNS or IP address. Login to the Live Platform portal with the credentials of the designated M365 tenant user.

2. Click Login with Microsoft.

3. Enter the credentials of the M365 tenant user. The Azure authentication and Permissions request dialog is displayed:

4. Click Accept.
5. You are prompted to authenticate your account using Microsoft Authenticator. Follow instructions to add the M365 tenant user to the Microsoft Authenticator.

6. Once setup, you are prompted to enter code on the Authenticator app on your mobile device, a screen similar to the following is displayed; complete the authentication process.

7. The screen below is displayed with "Login Failed" message.

8. Login to the Azure portal with customer M365 tenant 'Global' Admin or 'Service' account permissions and navigate to the newly created Enterprise application.

Notice the matching Application ID between the App Registration on the Service Provider (BradFrance27) and the Enterprise Application (BradRest) on the Customer tenant.

9. Click to open the new Enterprise application and then in the Navigation pane, select ManageUsers and groups.

10. Click Add user/group.

11. In the left pane, select the None Selected link under Users and groups, in the Users and groups dialog, select the user for which you wish to add an assignment, and then click Select. The user is selected, see "1 user selected" below.

12. Under the Select a role link, click the None Selected link.

13. In the right pane, select a role for the customer user and then click Select:
Lite Operator
Monitor
Operator
14. Click Select to confirm selection.

15. Click Assign. The new user with assigned role “Operator” is displayed in the screen below.

16. Login again to Live Platform portal with the credentials of the M365 tenant user.

17. Click Login with Microsoft.
18. Enter credentials of the user.
19. You will be prompted to authenticate your account using Microsoft Authenticator. A screen similar to the following is displayed; complete the authentication process.

20. Once logged in, click on the credentials of the logged in user in the top right-hand corner of the screen to open the drop-down. Notice that you are now logged in with the role that you assigned to the user above.