Search

Connect Microsoft Data with Human Managed via API

huma
huma
  • Updated

This article covers the step-by-step procedure to send data such from apps such as Intune, Azure Active Directory, Microsoft 365, etc. from your Microsoft Cloud Services instance to the Human Managed platform via API.

 

Human Managed will establish a connection to pull Microsoft data from your instance. Some parts of this this guide is derived from Microsoft’s API Guide Website.

 

connect diagram.png

 

 

Step 1: Create a service request for Human Managed to configure the API Receiver

  1. Submit a request 
  2. In the Subject, type or select Connect Microsoft 365 via API
  3. Once the ticket has been accepted by Human Managed and the ticket status has been updated, follow the next steps.

Step 2: Register an Application on Azure

  1. Navigate to Azure App Registration page at https://portal.azure.com/#view/Microsoft_AAD_RegisteredApps/ApplicationsListBlade
  2. Click on New registration 
    m3651.png
  3. Enter an appropriate Name. Leave all other settings default.
    m3652.png
  4. Click the Register button at the bottom.
    m3653.png

 

 

Step 3: Create a new Client Secret on created Application

  1. Click on Certificates & secrets followed by New client secret
    m3654.png
  2. In the blade on the right, enter a Description and pick 730 days (24 months) for the Expires field. Then click on the Add button at the bottom of the page.
    m3655.png

  3. Copy the value listed under the Value column. Note: If you forget to copy the value, you will be unable to do so after this. It is only displayed ONCE.
    m3656.png

Step 4: Add API Permissions on the created Application

  1. Click on API permissions and then Add a permission. API to be provided to HM requires APPLICATION PERMISSIONS.
    • Delegated Permissions. Enables your client app to perform operations on behalf of the signed-in user, such as reading email or modifying the user's profile.
    • Application Permissions. Permissions that enable the client app to authenticate as itself without user interaction or consent, such as an app used by background services or daemon apps.
      m3657.png

  2. In the permissions blade that appears on the right, select the appropriate permissions to apply. Choose the necessary Microsoft Applications to send data from.

    Depending on the Use Cases you intend to develop, the necessary API Permissions need to be granted.

    Example:

    Intune (DeviceManagementxyz) - provides data on assets, controls, and posture of devices managed by Intune
    m3658.png


    Other permissions: 

    m3659.png
  3. Click on the Grant admin consent for <Customer Microsoft Instance Name> link.
    m365_10.png

     

Step 5: Locate and copy the Client ID Value

  1. Go back to the list of apps in your Azure account and locate (and click on) the app you just created.

    m365_11.png
  2. Copy the value shown as Application (client) ID.
    m365_12.png

Step 6: Locate and copy the Tenant ID value 

  1. To get Tenant ID, go to and copy Tenant ID value. https://portal.azure.com/#view/Microsoft_AAD_IAM/ActiveDirectoryMenuBlade/~/Overview
    msft7.png

Step 7: Submit your credentials to Human Managed 

In the same service request ticket, update the ticket with the following details:

  • Value from Step 4 should be labelled as Client-Secret when provided.
  • Value from Step 5 should be labelled as Client-ID when provided.
  • Value from Step 6 should be labelled as Tenant-ID when provided.

Was this article helpful?

0 out of 0 found this helpful

Have more questions? Submit a request

Comments

0 comments

Please sign in to leave a comment.