You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
description: You can use the Azure portal to manage authentication in Microsoft Azure Maps.
4
4
author: walsehgal
5
5
ms.author: v-musehg
6
-
ms.date: 10/24/2019
6
+
ms.date: 01/16/2020
7
7
ms.topic: conceptual
8
8
ms.service: azure-maps
9
9
services: azure-maps
@@ -12,11 +12,11 @@ manager: timlt
12
12
13
13
# Manage authentication in Azure Maps
14
14
15
-
After you create an Azure Maps account, a client ID and keys are created to support either Azure Active Directory (Azure AD) or Shared Key authentication.
15
+
After you create an Azure Maps account, a client ID and keys are created to support Azure Active Directory (Azure AD) and Shared Key authentication.
16
16
17
17
## View authentication details
18
18
19
-
After creation of the Azure Maps account, the primary and secondary keys are generated. It is recommended to use primary keyas subscription key, when calling Azure Maps using [shared key authentication](https://docs.microsoft.com/azure/azure-maps/azure-maps-authentication#shared-key-authentication). Secondary key can be used in scenarios such as rolling key changes. To learn more, see [Authentication with Azure Maps](https://aka.ms/amauth).
19
+
After creation of the Azure Maps account, the primary and secondary keys are generated. Use the primary key as the subscription key, sometimes these names are used interchangeably. The secondary key can be used in scenarios such as rolling key changes. Either way, a key is needed to call Azure Maps. This process is called [shared key authentication](https://docs.microsoft.com/azure/azure-maps/azure-maps-authentication#shared-key-authentication). See [Authentication with Azure Maps](https://aka.ms/amauth) to learn more about Shared Key and Azure AD authentication.
20
20
21
21
You can view your authentication details on the Azure portal. Go to your account and select **Authentication** on the **Settings** menu.
22
22
@@ -27,46 +27,46 @@ You can view your authentication details on the Azure portal. Go to your account
27
27
28
28
After you create an Azure Maps account, you need to establish a link between your Azure AD tenant and the Azure Maps resource.
29
29
30
-
1.Go to the Azure AD blade and create an app registration. Provide a name for the registration. In the **Sign-on URL** box, provide the home page of the web app / API (for example, https:\//localhost/). If you already have a registered app, go to step 2.
30
+
1.Select **Azure Active Directory** from the portal menu. Provide a name for the registration. Click on **App registrations** then click on **New registration**. In the **Redirect URI** box, provide the home page of the web app. For example, https://localhost/. If you already have a registered app, go to step 2.
2. To assign delegated API permissions to Azure Maps, go to the application under **App registrations**, and then select **Settings**. Select **Required permissions**, and then select **Add**. Search for and select **Azure Maps** under **Select an API**, and then select the **Select** button.
36
+
2. To assign delegated API permissions to Azure Maps, go to the application under **App registrations**, and then select **API permissions**. Select **Add Permission**. Search for and select **Azure Maps** under **Select an API**.
37
37
38
38
39
39
40
-
3. Under **Select permissions**, select **Access Azure Maps**, and then select the **Select** button.
40
+
3. Under **Select permissions**, check the box for **user impersonation**, then click the **Select** button at the bottom.
41
41
42
42
43
43
44
44
4. Complete step a or b, depending on your authentication method.
45
45
46
-
1. If your application uses user-token authentication with the Azure Maps Web SDK, enable `oauthEnableImplicitFlow` by setting it to true in the Manifest section of your app registration detail page.
46
+
1. If your application uses user-token authentication with the Azure Maps Web SDK, enable `oauth2AllowImplicitFlow` by setting it to true in the Manifest section of your app registration.
2. If your application uses server/application authentication, go to the **Keys** blade in app registration and either create a password or upload a public key certificate to the app registration. If you create a password, after you select **Save**, copy the password for later and store it securely. You'll use this password to acquire tokens from Azure AD.
50
+
2. If your application uses server/application authentication, go to the **Certificates & secrets** blade in app registration and either create a password or upload a public key certificate to the app registration. If you create a password, store it securely for later use. You'll use this password to acquire tokens from Azure AD.
## Grant role-based access control (RBAC) to Azure Maps
56
56
57
-
After you associate an Azure Maps account with your Azure AD tenant, you can grant access controlby assigning a user, group or application to one or more Azure Maps access control roles.
57
+
After you associate an Azure Maps account with your Azure AD tenant, you can grant access control. You grant access control by assigning a user, group, or application to one or more Azure Maps access control roles.
58
58
59
-
1. Go to **Access control (IAM)**, select**Role assignments**, and then select **Add role assignment**.
59
+
1. Go to your **Azure Maps Account**. Select**Access control (IAM)**, then select **Role assignment**.
2. In the **Add role assignment** window, under **Role**, select **Azure Maps Date Reader (Preview)**. Under **Assign access to**, select **Azure AD user, group, or service principal**. Under **Select**, select the user or application. Select **Save**.
63
+
2. In the **Role assignment** window, under **Role**, select **Azure Maps Date Reader (Preview)**. Under **Assign access to** select **Azure AD user, group, or service principle**. Select the user or application. Select **Save**.
64
64
65
65
66
66
67
67
## View available Azure Maps RBAC roles
68
68
69
-
To view role-based access control (RBAC) roles that are available for Azure Maps, go to **Access control (IAM)**, select **Roles**, and then search for roles beginning with **Azure Maps**. These are the roles that you can grant access to.
69
+
To view role-based access control (RBAC) roles that are available for Azure Maps, go to **Access control (IAM)**, select **Roles**, and then search for roles beginning with **Azure Maps**. These roles are the roles, which you can grant access to.
70
70
71
71
72
72
@@ -93,7 +93,7 @@ After you register your app and associated it with Azure Maps, you can request a
93
93
| Azure Public |https://login.microsoftonline.com|https://atlas.microsoft.com/|
94
94
| Azure Government |https://login.microsoftonline.us|https://atlas.microsoft.com/|
95
95
96
-
For more information about requesting access tokens from Azure AD for users and service principals, see [Authentication scenarios for Azure AD](https://docs.microsoft.com/azure/active-directory/develop/authentication-scenarios).
96
+
For more information about requesting access tokens from Azure AD, for users and service principals, see [Authentication scenarios for Azure AD](https://docs.microsoft.com/azure/active-directory/develop/authentication-scenarios).
97
97
98
98
99
99
## Next steps
@@ -107,4 +107,4 @@ Learn how to see the API usage metrics for your Azure Maps account:
107
107
For a list of samples showing how to integrate Azure Active Directory (AAD) with Azure Maps, see:
108
108
109
109
> [!div class="nextstepaction"]
110
-
> [Azure AD authentication samples](https://github.com/Azure-Samples/Azure-Maps-AzureAD-Samples)
110
+
> [Azure AD authentication samples](https://github.com/Azure-Samples/Azure-Maps-AzureAD-Samples)
0 commit comments