Configuration of Microsoft Azure AD Application (for data synchronization via Microsoft Graph)

Responsible: Technology Team

1. Access this link in your browser;
2. On the home screen, as shown in the image below, click on the button:New Registration;

• "On the screen that will open, fill in the fields as described in the image below, and then click the button

  Register;

4. You will now see your registered application in the list, as shown in the image below;

5. Click on the name of your new application, and the screen below will be opened. Take note of the highlighted keys in the image and provide them to our support, identifying each one;

6. Now, in the side menu, click on the option: Certificates & Secretsand this screen will be opened. Include a new certificate with the name SimplificaCI, checking the option Never and click on Add. Once completed, take note of the key shown in the Value field of the created item and also provide it to our support. (Note: as soon as the key is generated, it must be recorded because exiting the screen and returning may make it impossible to copy it again, requiring the generation of a new key);

7. Now, in the side menu, click on the 'API permissions' option, and then click on the 'Add a permission' button as shown in the image below

8. On the screen that opens after clicking, choose the Microsoft Graph option highlighted in the image below;

9. Next, click on the Application permissions option highlighted in the image below;

10. Select only the option highlighted in the image below and click on Add permissions;

11. Repeat the procedure, but now click on the Delegated permissions option highlighted in the image below;

12. Select only the options highlighted in the image below and click on Add permissions;

13. In the permissions list, you will see a list of permissions already added, as shown in the image below. Now simply click on the 'Grant admin consent for SimplificaCI' button highlighted in the image so that all permissions are indeed granted. You can be sure that the permissions are correct when, in the list, all of them are marked as 'Granted for SimplificaCI,' as highlighted in the image.

---

Responsible: Technology Team aligned with Internal Communication, regarding which information should be synchronized with Simplifica.CI.

AD Field	Simplifica.CI Field
[ ] DisplayName	Nome Completo
[ ] JobTitle	Cargo
[ ] Mail	E-mail
[ ] MobilePhone	Telefone
[ ] Groups	Grupos a serem segmentados

Let's now define which filters will be applied for the import:

(Choose only one option and add the names of the groups below)

( ) Accept all groups, except...

( ) Ignore all groups, except...

"Names of the groups for the application of the above rule:"

Specify here one or more names of the groups used for organizing your (Provide one group per line)

Filter groups according to their visibility.

• ( ) Only groups with Private visibility

• ( ) Only groups with Public visibility

• ( ) All groups

---

Send the data to Simplifica.CI.

Now, return to our technical support with all the keys obtained in steps 5 and 6 of this documentation, as well as the synchronization rules specified above. In summary, these are the data you need to provide to our technical support via email help@simplificaci.com.br.

• Application (client) ID
• Directory (tenant) ID
• Object ID
• Client Secret (value)
• Rule: Fields to be imported
• Rule: Groups to be filtered
• Rule: Group visibility filter