Support
 
Phone Get Quote
 
Support
 
US: +1 888 720 9500
US: +1 888 791 1189
Intl: +1 925 924 9500
Aus: +1 800 631 268
UK: 0800 028 6590
CN: +86 400 660 8680

Direct Inward Dialing: +1 408 916 9892

 

Configuring Azure AD in ADAudit Plus

You can choose to audit your Azure AD environment using an Azure AD Premium license or using a Microsoft 365 license. With the Azure AD premium license, ADAudit Plus uses the Azure reporting API to obtain events from Azure AD, and with the Microsoft 365 license, it uses PowerShell cmdlets (unified audit log) to get events from Azure AD.

Azure AD app creation

Here are the steps to create an application in Azure AD:

  1. Register an application.
  2. Find which API is used to audit Azure.
  3. Provide the required minimum privileges.
  4. Obtain your client secret and client ID.
  5. Collect and analyze configuration settings.
  6. Setting up Azure AD in ADAudit Plus.

1. Register an application

  1. Go to the Azure portal by clicking here, and sign in using your Microsoft account.
  2. Select the Azure Active Directory service from the Azure services top pane.
    Using an Azure AD Premium license
  3. Go to Manage > App registrations > New registration to open the Register an application window.
    Using an Azure AD Premium license
  4. Enter the application name, for example “ADAudit Plus Application”.
  5. Ensure that Accounts in this organizational directory only (tenantname only - Single tenant) is selected under Supported account types.
    Using an Azure AD Premium license
  6. Click Register.

2. Find which API is used to audit Azure

Follow these steps to determine which API is used to audit Azure:

  1. Open the ADAudit Plus web console.
  2. Go to Configuration > Configured Server(s) > Cloud Directory.
  3. In the top-right corner, if the Migrate to Microsoft Graph API button is available, then Azure Active Directory Graph API is in use. If the Back to Azure AD Graph API button is available, then Microsoft Graph API is in use.
    Using an Azure AD Premium license

3. Provide the required minimum privileges.

  1. Go to the Azure portal by clicking here, and sign in using your Microsoft account.
  2. Select Azure Active Directory service from the Azure services top pane.
    Using an Azure AD Premium license
  3. Go to Manage > App registrations. Select your application under Owned applications.
    Using an Azure AD Premium license
  4. Go to Manage > API permissions and select + Add a permission.
    Using an Azure AD Premium license

Required while using Azure Active Directory Graph API

  • Privileges needed while using the Azure Active Directory Graph API.

    Steps to grant the required permissions while using the Azure Active Directory Graph API (default)

    Using an Azure AD Premium license
  • Go to Azure Active Directory Graph > Application permissions.
    Using an Azure AD Premium license
  • In the Request API permissions window, select Directory > Directory.Read.All.
    Using an Azure AD Premium license
  • Click on Add permissions.
  • Select ✓Grant admin consent for <tenantname>.
  • Click Yes.

Privileges needed while using Microsoft Graph API.

Follow these steps to grant the required permissions using Microsoft Graph API:

Using an Azure AD Premium license
  • Go to Select an API > Microsoft Graph. Click Application permissions as the type of permission required.
    Using an Azure AD Premium license
  • From the list select the following:

      Directory > Directory.Read.All
      AuditLog > AuditLog.Read.All
      User > User.Read.All
      Application > Application.Read.All
      Group > Group.Read.All

    Using an Azure AD Premium license
  • Click on Add permissions.
  • Select ✓Grant admin consent for <tenantname>.
  • Click Yes.

Migrating Azure API graph API to Microsoft graph API

Follow these steps to migrate the existing cloud directory:

  1. Open the ADAudit Plus web console.
  2. Go to Configuration > Configured Server(s) > Cloud Directory.
    Using an Azure AD Premium license
  3. Click on Migrate to Microsoft Graph API at the top-right corner.
  4. Click Yes in the confirmation prompt.
Note: Click here to find the various permissions required for the application and instructions on how to set them using Microsoft Graph API.

4. Obtain your application's client secret

  • Go to the Azure portal by clicking here, and sign in using your Microsoft account.
  • Select the Azure Active Directory service from the Azure services top pane.
    Using an Azure AD Premium license
  • Go to Manage → Certificates & secrets.
    • Click + New client secret.
    • Type in the description and the expiration date.
    • Click Add.
    Using an Azure AD Premium license
    Using an Azure AD Premium license
  • Copy the client secret value (e.g., “14uCILxkHtIVGR3wkCq12341Nd5VtestkkWTyIPrrE=”).
    Using an Azure AD Premium license

5. Collect and analyze configuration settings

  • Go to the Azure portal by clicking here, and sign in using your Microsoft account.
  • Select the Azure Active Directory service from the Azure services top pane.
    Using an Azure AD Premium license
  • Go to Manage → App registrations. Select your application under Owned applications.
    Using an Azure AD Premium license
  • Navigate to Application (client ID) and click Copy to clipboard.
    Using an Azure AD Premium license

Setting up Azure AD in ADAudit Plus

  • Open the ADAudit Plus web console.
  • Go to Configuration → Configured Server(s) → Cloud Directory.
  • Select + Add Tenant in the top-right corner.
    Using an Azure AD Premium license
  • Select Audit via Azure.
  • In the Cloud Directory window, type in the Tenant Name, Client ID, and Client Secret.
    Using an Azure AD Premium license
  • Click Add.

ADAudit Plus Trusted By