You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/api-management/api-management-howto-aad.md
+10-10Lines changed: 10 additions & 10 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -49,10 +49,10 @@ This article shows you how to enable access to the developer portal for users fr
49
49
12. Under **Manage**, select **App registrations**.
50
50
13. Select **New registration**. On the **Register an application** page, set the values as follows:
51
51
52
-
* Set **Name** to a meaningful name. e.g., *developer-portal*
53
-
* Set **Supported account types** to **Accounts in this organizational directory only**.
54
-
* Set **Redirect URI** to the value you got from step 9.
55
-
* Choose **Register**.
52
+
* Set **Name** to a meaningful name. e.g., *developer-portal*
53
+
* Set **Supported account types** to **Accounts in this organizational directory only**.
54
+
* Set **Redirect URI** to the value you got from step 9.
55
+
* Choose **Register**.
56
56
57
57
14. After the application is registered, copy the **Application (client) ID** from the **Overview** page.
58
58
15. Go back to your API Management instance. In the **Add identity provider** window, paste the **Application (client) ID** value into the **Client ID** box.
@@ -67,11 +67,11 @@ This article shows you how to enable access to the developer portal for users fr
67
67
68
68
19. The **Add identity provider** window also contains the **Allowed Tenants** text box. There, specify the domains of the Azure AD instances to which you want to grant access to the APIs of the API Management service instance. You can separate multiple domains with newlines, spaces, or commas.
69
69
70
-
> [!NOTE]
71
-
> You can specify multiple domains in the **Allowed Tenants** section. Before any user can sign in from a different domain than the original domain where the application was registered, a global administrator of the different domain must grant permission for the application to access directory data. To grant permission, the global administrator should:
72
-
> a. Go to `https://<URL of your developer portal>/aadadminconsent` (for example, https://contoso.portal.azure-api.net/aadadminconsent).
73
-
> b. Type in the domain name of the Azure AD tenant that they want to give access to.
74
-
> c. Select **Submit**.
70
+
> [!NOTE]
71
+
> You can specify multiple domains in the **Allowed Tenants** section. Before any user can sign in from a different domain than the original domain where the application was registered, a global administrator of the different domain must grant permission for the application to access directory data. To grant permission, the global administrator should:
72
+
> a. Go to `https://<URL of your developer portal>/aadadminconsent` (for example, https://contoso.portal.azure-api.net/aadadminconsent).
73
+
> b. Type in the domain name of the Azure AD tenant that they want to give access to.
74
+
> c. Select **Submit**.
75
75
76
76
20. After you specify the desired configuration, select **Add**.
77
77
@@ -92,7 +92,7 @@ Now you can add external Azure AD groups from the **Groups** tab of your API Man
0 commit comments