Register an Application in Azure Active Directory for Process Runner
To register an application in Azure Active Directory (Azure AD), you can refer to Microsoft documentation and search for the term application registration. For ease of use, you can follow these steps:
Register an application
To register a new application,
- Go to Azure Portal.
- On the left pane, select Azure Active Directory.
- On the Azure Active Directory page, select App registrations.
- Under Manage > select App Registrations > New registration. The Register an application screen appears.
Note: The option to select New registration is available only for the role Application Developer.
- Enter the name of the application you want to configure. For example, Email Runner.
- In the Supported account types section, select AzureADMyOrg radio button.
- Select Register.
Note: If you are an owner of an existing application, go to the App registrations page, select Owned applications and search for the application.
Manage Certificates and Secrets
After registering your application, you can either upload the certificate or generate a new client secret. Select the application, and on the left pane, select the Certificates & secrets tab.
To create a new client secret,
- Select the Client secrets tab.
- Select New client secret.
- Enter a name or details in Description.
- Select expiry duration from Expires combo.
- Select Add. A new client secret is created.
- Copy the client secret value and save it in another location for future use.
To upload the certificate,
- Select the Certificates tab.
- Select Upload certificate.
- Select the Browse button and select a certificate from your directory.
Note: You can upload only .cer, .pem, or .crt files to azure active directory.
- Enter a name or details in Description.
- Select Upload. The certificate you added gets uploaded to Azure AD.
Assign API permissions
- On the right pane, select API permissions.
- Select Add a permission > Microsoft Graph > Application permissions.
- Search for the following permissions:
- Mail.Read
- Mail.ReadBasic
- Mail.ReadBasic.All
- Mail.ReadWrite
- Mail.Send
- User.Read.All
- Directory.Read.All
- Directory.ReadWrite.All
- Select Add permissions. The permissions are added.
- Select Grant admin consent for <Your domain name> for each permission to grant admin access.
After granting admin access, the status section in the list displays a green checkmark.
Import certificate to a local machine
This section is applicable only if you select Certificates in the Manage Certificates and Secrets section. You must import the certificate that you uploaded in the Azure Active Directory to the local machine where Process Runner is installed. While the azure active directory requires you to upload a certificate with .cer. or .pem, or .cet files as extensions, you must upload a .pfx copy of the certificate to your local machine. To import the certificate:
- Go to Windows > Manage Computer Certificates > Personal.
- In the Personal folder, right-click > All Tasks > Import. The certificate import wizard appears.
- Import the <>.pfx copy of the certificate that you uploaded in the Azure AD.
Alternatively, you can also double-click the .pfx certificate file and perform the following to import the certificate to your local machine:
- In the Certificate Import Wizard, select Local Machine and select Next.
- In the Certificate Store section, select Place all certificates in the following store.
- Select Browse > Personal.
- Select Next and Finish.
The <certificate>.pfx file you added gets uploaded to the local machine.