Register Your Application in Microsoft Entra ID
To connect Microsoft Entra ID with StackOne, you need to register an application in Microsoft Entra ID to obtain OAuth 2.0 credentials.
Sign in to Microsoft Entra Admin Center
Sign in to the Microsoft Entra admin center as at least an Application Developer. If you have access to multiple tenants, click the Settings (gear) icon in the top-right corner, then select the desired tenant from the list under Directory + subscription.
Create a New App Registration
From the left sidebar, go to App registrations and click on New registration.
- Enter a meaningful Name for your app (e.g., StackOne Entra ID Integration).
- Under Supported account types, select the appropriate option. Choose Accounts in any organizational directory for multi-tenant access or Accounts in this organizational directory only for single-tenant.
- Select Register to create the app registration.
Configure Redirect URI
Set up the OAuth 2.0 callback URL to enable authentication flow between StackOne and Microsoft Entra ID.
Navigate to Authentication Settings
From your app’s Overview page, select Authentication (Preview) from the left menu under Manage. If you are using the older UI, this may appear as Authentication.
Set the Redirect URI
Under Redirect URI configuration, click Add Redirect URI, select Web, enter the StackOne OAuth callback URL, and click Configure.
- Redirect URI:
https://api.stackone.com/connect/oauth2/microsoftentraid/callback - Note: If you are using the older UI, under Platform configurations click Add a platform, select Web, enter the URI above, and click Configure.
Configure API Permissions
Grant your application the necessary Microsoft Graph API permissions. Add the scopes based on the permission type (Delegated or Application) and the resources your integration needs.
Add Delegated Permissions
Click Add a permission, select Microsoft Graph, then select Delegated permissions. Enable the scopes required for the resources your integration needs, then click Add permissions to save:
Add Application Permissions
Click Add a permission, select Microsoft Graph, then select Application permissions if your integration requires app-only access (no signed-in user). Enable the scopes required for the resources your integration needs, then click Add permissions to save:
Grant Admin Consent
Click Grant admin consent for [tenant name] and select Yes to consent on behalf of all users in your tenant. After granting, verify that Granted for [tenant name] appears under the Status column. A Global Administrator is required to grant consent for directory-level permissions.
Generate Client Secret
Create a client secret that will be used to authenticate your application with Microsoft Entra ID.
Create a New Client Secret
Under the Client secrets tab, click New client secret.
- Add a Description (e.g., StackOne Entra ID Integration Secret).
- Select an appropriate expiration period.
- Click Add.
Creating the StackOne Connector Profile
To create the Connector Profile in StackOne for Microsoft Entra ID:Navigate to Connector Profiles
Create New Connector Profile
- Click + Connector Profile
- Search for and select Microsoft Entra ID
- Select Type as OAuth 2.0 (Common)
- Fill out the fields using details retrieved from your provider:
- Client ID
- Client Secret
- Scopes (Optional)
- (Optional) Select Actions to be enabled for this Connector Profile
- Click Create profile