==== Creating an External Service for Accessing Microsoft Graph APIs ==== === Creating the Azure AD Application === == Step 1: Create an Azure AD Application == - **Log in to Azure Portal** 👉 Go to **[[https://portal.azure.com/#view/Microsoft_AAD_RegisteredApps/ApplicationsListBlade|Azure AD - App Registrations]]**. - **Create a new application** - Click on **"New registration"**. - **Name**: Give a name to the application (e.g., `MTRMonitoringAPI`). - **Account types**: Select **"Accounts in this organizational directory only"**. - **Redirect URI**: Leave empty if not used. - Click on **"Register"**. == Step 2: Retrieve Application Information == - **Client ID**: Copy the **"Application (client) ID"**. - **Tenant ID**: Copy the **"Directory (tenant) ID"**. {{:en:guide:microsoft:pasted:20250226-120512.png}} == Step 3: Create a Client Secret == - Go to **"Certificates & secrets"** (left menu). - **Create a new secret**: - Click on **"New client secret"**. - Give it a **name** and choose an expiration period. - Click on **"Add"**. - **Copy the value immediately**, as it will no longer be visible afterward. {{:en:guide:microsoft:pasted:20250226-120623.png}} == Step 4: Assign Microsoft Graph Permissions == - Go to **"API Permissions"**. - Click on **"Add a permission"**. - Select **Microsoft Graph**. - **Choose "Application permissions"**. - Add the necessary permissions: - **`TeamworkDevice.Read.All`** - **`TeamworkDevice.ReadWrite.All`** - Click on **"Add"**. - Return to **"API Permissions"** and click **"Grant admin consent for the organization"**. {{:en:guide:microsoft:pasted:20250226-120725.png}} === Creating the External Service === === Creating the External Service === * In **Zebrix Control**, go to **Configuration / External Services**. * Add a service of type **Ms Graph**. * Fill in all the required fields. {{:en:guide:microsoft:pasted:20250226-120900.png}}