Microsoft Entra Application Setup
- 12 Mar 2025
- 4 Minutes to read
- Print
Microsoft Entra Application Setup
- Updated on 12 Mar 2025
- 4 Minutes to read
- Print
Article summary
Did you find this summary helpful?
Thank you for your feedback
In this Article
This article provides a step-by-step guide on setting up Microsoft Entra ID, assigning permissions, generating certificates and secrets, and configuring payout settings. It details how Microsoft Entra ID is created and onboarded with the necessary permissions via Partner Center, enabling seamless integration with SaaSify for managing purchases, subscriptions, private offers, insights, onboarding data, payouts, and co-sell functionalities in the Azure Marketplace.
Create Microsoft Entra Application
Follow the below steps to create a Microsoft Entra Application in Azure Portal:
Note:
To perform the steps mentioned below, the required role on the Azure Management Portal should be Application Developer.
Log in to the Azure Portal
Click on the Microsoft Entra ID menu option.
Click on App registrations from the left menu to get to the list of existing Microsoft Entra applications.
Click the + New registration button in the toolbar to start creating a new Microsoft Entra application.
Provide the Name for the application. For Example: <Customer Company Name>- SaaSify App for Azure Marketplace
Select the option – Accounts in this organizational directory only (<Company Name> – Single tenant)
Click Register
Go to Overview and copy the Application (client) ID and Directory (tenant) ID as these details would be used later to create a Seller Account in SaaSify.
By following the outlined steps, you will have successfully created a Microsoft Entra Application.
Assign API Permissions to the Microsoft Entra Application
Once the Microsoft Entra Application is created, you need to make sure that the required API permissions are assigned to the application. To assign the API Permissions, follow the below steps:
Note:
To perform the steps mentioned below, the required role on the Azure Management Portal should be Application Developer
Go inside the Microsoft Entra ID that you created in the previous step
Select the API permissions from the left menu of the Application
Click + Add a permission
Click on the APIs my organization uses tab
Search and Add for the following permissions:
Copy the following application ID: fa3d9a0c-3fb0-42cc-9193-47c7ecd2edbd and then paste it into the search bar.
Click on Microsoft Partner Center and Select the checkbox – user_impersonation
Click Add Permissions to successfully save the permission.
Click + Add a permission
Click on APIs my organization uses tab
Search and Add for the following permissions:
Copy the following application ID: 4990cffe-04e8-4e8b-808a-1175604b879f and then paste it into the search bar.
Click on Microsoft Dev Center and select the checkbox – user_impersonation
Click Add Permissions to successfully save the permission.
Click on Grant admin consent and confirm Yes.
Note:
Microsoft Dev Center permission is represented as Microsoft Partner in Azure Portal.
Therefore, you would have finished assigning the necessary permissions to the Microsoft Entra Application.
Create Certificates and Secrets
Once the Microsoft Entra Application is created with the required permissions, we need to create a Client Secret by following the below steps:
Note:
To perform the steps mentioned below, the required role on the Azure Management Portal should be Application Developer.
Go inside the Microsoft Entra ID that you created earlier.
Click Certificates & secrets from the left menu.
Click + New client secret.
Provide a description.
The Expires column should be selected as 24 months from the dropdown.
Click on Add.
Record the client secret value created at this time. You will not be able to capture the value once you leave the page as this detail would be needed in configuring the SaaSify.
Thus, by following the above steps, a Client secret will be created which is an essential part of the configuration of the Microsoft Entra Application.
Payout Configuration in Azure Portal
Integrating Payouts with the SaaSify platform enables you to efficiently track receivables and tax details within the Reports section. This feature provides a comprehensive view of transaction statuses, including pending payments, overdue amounts, and completed payouts, all in a single dashboard.
Additionally, it offers detailed tax breakdowns, specifying who is responsible for tax payments—whether it's the ISV or Microsoft—along with the earnings amount.
To leverage this functionality, a Microsoft Entra ID application must be created and onboarded with the appropriate permissions via Partner Center. Ensure that you have the necessary rights to create applications before proceeding.
To complete the Payouts configuration in the Azure Management Portal please follow the below steps:
Note:
To perform the steps mentioned below, the required role on the Azure Management Portal should be Application Developer.
Open the Microsoft Entra App ID that you created earlier.
In the "Overview" section, select "Add a Redirect URI"
Ensure that the option "Accounts in this organizational directory only (<Company Name> -Single tenant)” is chosen under "Supported account types."
In the "Platform configurations" section, select "Add a platform."
Choose "Web" from the options listed under "Configure platforms."
In the "Redirect URI" section, choose "Web" from the dropdown and enter the URI in the following format: https://<Tenant Name>.saasify.ai/mslogin and replace “https://<Tenant Name>.saasify.ai” with your SaaSify Portal URL.
Make sure that the following tokens are enabled under "Implicit grant and hybrid flows."
Access tokens (used for implicit flows.
ID tokens (used for implicit and hybrid flows).
Proceed by clicking on the "Configure" button.
AMP Setup and Configuration
Please click here to redirect to the video demonstration of the Azure Marketplace Setup and Configuration.
Next Step
Follow the steps on the next page to Assign Permissions in the Microsoft Partner Center.