# Microsoft Entra ID

#### **Overview**

You’ll register a new enterprise application in Microsoft Entra ID (Azure AD) and grant access for GetTrusted SSO.

#### **Prerequisites**

* Admin access to the **Azure portal**.
* Permission to create app registrations.

{% hint style="info" %}
As you go through this save the 4 pieces of information as you will need it again for the directory services setup as the same data is needed. 
{% endhint %}

#### **Steps**

**1. Open Azure Portal**

Go to [**portal.azure.com › Microsoft Entra ID › App registrations** ](https://portal.azure.com/#view/Microsoft_AAD_IAM/ActiveDirectoryMenuBlade/~/RegisteredApps)and click **New registration**.

<figure><img src="/files/pMpSskGIbSExXdE9woQN" alt=""><figcaption></figcaption></figure>

**2. Register the Application**

* Name: `GetTrusted Enterprise`
* Supported account types: “Accounts in this organization only.”
* Redirect URI (Web):

  ```
  https://enterprise.gettrusted.app/auth/oidc/callback
  https://enterprise.gettrusted.app/auth/oidc/mobile/callback
  ```

<figure><img src="/files/24cl2mhmmNudsfwSyVuy" alt=""><figcaption></figcaption></figure>

**3. Save and Copy Application Details**

After saving, note:

* **Application (Client) ID**
* **Directory (Tenant) ID**

<figure><img src="/files/Y2OPxXZK0N7xymfZx3ch" alt=""><figcaption></figcaption></figure>

**4. Add Client Secret**

Under **Certificates & Secrets**, select **New Client Secret** → choose an expiration period → **Add**.\
Copy the generated secret value immediately

**5. Verify Redirect URIs**

Navigate to the Authentication (Preview) page for your Integration you just created. Navigate to settings and ensure Allow public client flows is disabled, and ensure Access tokens and ID tokens are enabled.

<figure><img src="/files/CP0y754nREgtqhI9XyPR" alt=""><figcaption></figcaption></figure>

**6. Enter Values into GetTrusted**

In GetTrusted › **Settings › Authentication**, fill:

* Client ID
* Client Secret
* Tenant ID&#x20;
* Primary domain for your Microsoft tenant, this will generally be the email domain.&#x20;

<figure><img src="/files/OJMcTQnAjxBbh55f2gZr" alt=""><figcaption></figcaption></figure>

Click **Save Connection**. We will next start setting up.&#x20;


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.gettrusted.app/getting-started/quickstart-for-enterprises/configure-single-sign-on/microsoft-entra-id.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.