_SvIncludePlusContent-US Microsoft Entra ID (formerly Azure AD) Quickstart

Go to portal.azure.com, click "Microsoft Entra ID" in the left panel and then choose "App registrations".

1. Click on "New registration"

2. Enter a "Name" for the app.

3. Click on "Register".

4. On this page you can see the "Application ID" and the "Directory (tenant) ID". You will need both to setup the Azure AD connector in User Sync.

5. Click on "API permissions" in the left panel.

6. Delete the default created permission since it's not needed.

7. Click on "Add a permission" and choose "Microsoft Graph".

8. Click on "Application Permissions".

9. Search for the "Directory" entry, expand it and tick "Directory.Read.All".

10. Click on "Add permissions" to add the permissions.

11. Click on "Grant admin consent for ...".

12. Next, click on "Certificate & secrets".

13. Add a new Client secret by click on "New client secret".

14. Enter a description for the secret and also set an expiry date. Click on Add to confirm.

15. Copy the secret now ("VALUE"). You are not able to see it again after leaving that page. Please paste it to a text editor for the tutorial.

Now it is time to configure User & Group Sync in your Atlassian Server or Data Center product. Please keep the Azure website open, because we will need it later on.

1. Now, go back to your Atlassian Server or Data Center product, and go to the User & Group Sync Configuration.

2. Click Create Connector and choose Azure.

3. First, paste the client secret (which you copied before) into the Application Secret.

4. Next, go back to the Azure website and click Properties in the app you have created for User & Group Sync. Copy the Application ID and Directory (Tenant) ID and paste them into the User & Group Sync configuration in your Atlassian product.

5. In the User & Group Sync configuration under the Sync Settings tab, activate Scheduled Synchronization. You can edit the Cron expression to set a synchronisation interval.