Where is the OIDC Client ID, ROPG Client ID and Address of my Azure AD instance?

user-zBNtQAAFCi
New Contributor

Hey everyone:


I'm in the process of setting up Jamf Connect with a test version of the product and I'm trying to locate the following:

 

  1. Authentication Address - address to authenticate to my azure instance
  2. OIDC Client ID
  3. ROPG Client ID

I have admin creds for our Azure ID environment but have no idea where to locate these bits of info.

Any help would be GREATLY appreciated!

6 REPLIES 6

Tribruin
Valued Contributor II

Assuming a pure Azure authentication, the OIDC Client ID and ROPG Client ID will be the the Application (Client) ID generated when you create an App Registration. And you don't need an Authentication Address. 


If you are using ADFS for authentication, it is a little different. 

simonep
New Contributor III

Can you please share information for the ADFS auth process?  We are having issues with Azure and want to leverage ADFS, but I believe there are different ADFS authentication options.

Do you mean they are the same thing?

junjishimazaki
Valued Contributor

@user-zBNtQAAFCi  have you looked over the Jamf Connect admin guide to register/configure your Jamf Connect in your Azure instance? https://docs.jamf.com/jamfconnect/2.4.1/documentation/Integrating_with_Microsoft_Azure_AD.html

and check out this one as well https://docs.jamf.com/jamf-connect/2.4.1/documentation/Authentication_Settings.html#ID-00002f0c

Samstar777
Contributor II

If you have not registered Jamf Connect with Azure yet than you need to follow below steps:

To integrate with Azure AD, you must create an app registration for Jamf Connect.
  1. Log in to the Microsoft Azure Portal.
  2. Click the Azure Active Directory in the left sidebar.
  3. Click App registrations, and then click new registration.
  4. Enter Jamf Connect or something similar the Name field.
  5. Select Accounts in this organizational directory only in Supported account types.
  6. Choose Public client (mobile & desktop) from the Redirect URI pop-up menu, and then enter a valid URI, such as https://127.0.0.1/jamfconnect, in the Redirect URI field.
    Note:

    If you also plan to use the Jamf Unlock app in your organization, enter jamfunlock://callback/auth as an additional redirect URI to use for authentication.

  7. Click Register.
Your Jamf Connect app registration is added to Azure AD.

You can now edit the app registration to grant admin consent for API calls and modify authentication settings.

Granting Admin Consent for API Calls in Azure AD

  1. Navigate to your app registration.
  2. From the Manage section in the sidebar, click API permissions.
  3. In Grant Consent settings, click Grant admin consent for your company and then click Yes when prompted.

 

For detailed Instructions click on this link

 

If you have already registered Jamf Connect in Azure than follow below steps to find your Authentication Address, OIDC and ROPG (OIDC and ROPG are basically your application ID in azure)

  1. login to https://portal.azure.com
  2. go to azure active directory
  3. app registrations
  4. click "All Applications"
  5. search for your app name which you have provided when registered Jamf Connect and hit enter
  6. Click on Display Name of your app from search result
  7. Application (client) ID is your OIDC and ROPG
  8. than Click on Authentication
  9. you will find your redirect URI information here.

 

Hope this will help you.

Levi_
Contributor II

Hey @user-zBNtQAAFCi

The easiest way to get started is watching the Jamf Connect 2.0 training videos, you can find them here at this URL - https://trainingcatalog.jamf.com/ 

On the left select Jamf Connect and you will see the two options, select Jamf Connect 2.0 and then you will see the courses available, look for the Azure Integration video and it should answer all your questions for obtaining your OIDC and ROPG ID's.

Good Luck