Skip to content
  • There are no suggestions because the search field is empty.

How do I set up the Azure Active Directory integration?

This article describes how to set up the Azure Active Directory integration to import users as recipients for Phishing Simulation & Awareness Training campaigns.

Note: This integration allows you to import users from Azure Active Directory as recipients into Security Center. Note that the integration does not continuously sync users between systems; each import is a one-time action.

Set up the app registration in Azure Active Directory

  1. Log in to your Azure Active Directory account.
  2. Navigate to App registrations and click New registration.
  3. Enter a name for the application, select Accounts in this organizational directory only, and click Register.
  4. Note down the Application (client) ID from the app overview - this will be required in Security Center.
  5. Click API permissions in the left menu, then click Add a permission.
  6. Select Microsoft Graph > Application permissions and add the User.Read.All permission.
  7. Click Grant admin consent to activate the permission.
  8. Click Certificates & secrets in the left menu, then click New client secret.
  9. Copy and save the client secret value immediately - this will be required in Security Center and will only be shown once.
  10. In Azure Active Directory > Overview, note down the Primary domain value (e.g., yourdomain.onmicrosoft.com) - this will also be required in Security Center.

Configure the integration in Security Center

  1. Log in to Security Center.
  2. Click the menu icon in the top right corner.
  3. Click Integrations.
  4. Click Configure on the Azure Active Directory integration.
  5. Under Credentials, enter the following:
    • Tenant domain: enter the Azure Active Directory Primary domain value.
    • Client ID: enter the Application (client) ID value.
    • Client secret: enter the client secret value.
  6. Click Establish connection to verify the credentials and test the connection. Note that it may take up to 4 hours for app permissions to be granted.
  7. Click Update settings.

Import users as recipients

  1. Log in to Security Center.
  2. Click Assets in the main menu.
  3. Click Recipients.
  4. Click + Add recipients and select From Azure AD.
  5. Configure the import options:
    • Check Exclude Azure AD users that do not have an active license assigned if you want to exclude unlicensed users.
    • Select any tags to apply to the imported recipients.
    • Check Update existing recipients if you want to update recipients that have already been imported. Select Append tags to add to existing tags, or Replace tags to overwrite them.
  6. Click Start import.
  7. Done!

For more information, please contact our customer support.