: Reconnect Azure Active Directory
Focus
Focus

Reconnect Azure Active Directory

Table of Contents

Reconnect Azure Active Directory

Learn how to reconnect your Azure Active Directory (Azure AD) to the Cloud Identity Engine.
If the connection between your Azure Active Directory (Azure AD) and the Cloud Identity Engine is not active or if you want to make changes to your Azure AD configuration, you can reconnect your Azure AD to the Cloud Identity Engine.
  1. Log in to the hub and select the Cloud Identity Engine tenant that contains the Azure AD you want to reconnect.
  2. Select
    Directories
    .
  3. Select
    Actions
    Reconnect
    .
  4. Select whether you want to make any changes to your configuration.
    • If you want to use a service account to log in to Azure AD, you can Deploy or Migrate to Client Credential Flow for Azure AD.
    • If you want to collect information about user risk levels and activity to use when you Create a Cloud Dynamic User Group,
      Collect user risk information from Azure AD Identity Protection
      .
    • If you want to include role information to prevent role-based attacks,
      Collect Roles and Administrators (Administrative roles)
      . For more information, see Configure Azure Active Directory.
    • If you want to display application data when you View Directory Data,
      Collect enterprise applications
      data. If you don't want to collect application data or you don't use application data in your security policy, deselect the checkbox to decrease the sync time.
  5. (
    Auth Code Flow only
    )
    Sign in with Azure
    using your Azure administrator credentials and grant permissions for the Cloud Identity Engine to access the directory information.
  6. (Client credential flow only)
    Enter the
    Client ID
    and
    Client Secret
    (or click
    Restore
    to restore the current client secret) to Deploy or Migrate to Client Credential Flow for Azure AD.
    You cannot change the
    Directory ID
    . If you need to change the Directory ID, you must set up a new Azure AD configuration in the Cloud Identity Engine.
  7. Click
    Test Connection
    to confirm the Cloud Identity Engine can access your Azure AD.
  8. (
    Optional
    )
    Customize Directory Name
    if you want to change the name that the Cloud Identity Engine displays for this directory in your tenant.
    You can use up to 15 lowercase alphanumeric characters (including hyphens, periods, and underscores) for the directory name in the Cloud Identity Engine. You don't need to change the name of the directory itself, only the name of the directory in the Cloud Identity Engine app. If your directory name contains more than 15 characters, you must change the directory name to contain a maximum of 15 characters.
  9. Submit
    your configuration to reconnect to the directory.

Recommended For You