Your application's code, or more typically an authentication library used in your application, also uses the client ID. Then on the Properties page toggle Visible to users? to Yes. To enable the app, in the Azure portal navigate to Azure Active Directory > Enterprise applications and select the app. When you are ready for users to see the app on their My Apps page you can enable it. New app registrations are hidden to users by default. Also called the client ID, this value uniquely identifies your application in the Microsoft identity platform.
When registration finishes, the Azure portal displays the app registration's Overview pane. Select Register to complete the initial app registration. You'll configure a redirect URI in the next section. Personal Microsoft accounts include Skype, Xbox, Live, and Hotmail accounts.ĭon't enter anything for Redirect URI (optional). Select this option if you're building an application only for users who have personal Microsoft accounts. Select this option to target the widest set of customers.īy selecting this option, you're registering a multitenant application that can also support users who have personal Microsoft accounts. This type of app is known as a multitenant application in the Microsoft identity platform.Īccounts in any organizational directory and personal Microsoft accounts This option is appropriate if, for example, you're building a software-as-a-service (SaaS) application that you intend to provide to multiple organizations.
Select this option if you want users in any Azure Active Directory (Azure AD) tenant to be able to use your application. Often called a line-of-business (LOB) application, this app is a single-tenant application in the Microsoft identity platform.
Select this option if you're building an application for use only by users (or guests) in your tenant. Supported account typesĪccounts in this organizational directory only Specify who can use the application, sometimes called its sign-in audience. The app registration's automatically generated Application (client) ID, not its display name, uniquely identifies your app within the identity platform. You can change the display name at any time and multiple app registrations can share the same name. Users of your application might see the display name when they use the app, for example during sign-in. Under Manage, select App registrations > New registration.Įnter a display Name for your application. Search for and select Azure Active Directory. In the top menu to switch to the tenant in which you want to register the application. If you have access to multiple tenants, use the Directories + subscriptions filter The trust is unidirectional: your app trusts the Microsoft identity platform, and not the other way around.įollow these steps to create the app registration: Registering your application establishes a trust relationship between your app and the Microsoft identity platform. Completion of the Set up a tenant quickstart.Any of the following Azure AD roles include the required permissions: The Azure account must have permission to manage applications in Azure Active Directory (Azure AD).An Azure account that has an active subscription.To register an application for Azure AD B2C, follow the steps in Tutorial: Register a web application in Azure AD B2C.