Generate a client secret (Azure AD)

To enable secure communication with your Active Directory domain, you need to generate a client secret. The client secret is used by Azure to authenticate Cloud.

To generate a client secret:

  1. Sign in to your Azure portal.

  2. Select Azure Active Directory.

  3. From the left-hand navigation pane, select App registrations.

  4. Select the correct app from the list.

  5. Select Certificates & secrets from the left-hand navigation pane.

  6. Select New client secret.

    Select New client secret.

  7. Enter an appropriate Key description and select a Duration.

    Note: If your key expires, users will be unable to access Cloud. We recommend that you renew your key before it expires to minimize disruption. To renew your key, generate a new client secret and add it to the Client secret field in Settings | Single Sign-On | Identity Provider, along with the existing Application ID and metadata endpoint.

  8. Select Add.

    Important: Copy the client secret value and paste it to a text document for later use. Label it Client Secret.

    Your client secret will be permanently hidden when you navigate away from the Certificates & Secrets pane. You must have access to your client secret to complete the SSO setup process. If you lose access to your client secret value, you must delete your client secret and generate a new one.

Next: Copy the metadata endpoint