Integrate Microsoft Azure with Threatcop Admin

Note: To perform the integration, global admin access is required for Azure Portal

Direct Method : 

1. Log in to Threatcop Admin Panel
Use your region-specific login:

• India: https://admin.threatcop.com/login
  
• UAE: https://admin.threatcop.ae/login
  
• KSA: https://ksa.admin.threatcop.com/login
  
•     USA: https://admin.threatcop.us/login

4. Click “Integrate” under the Microsoft Azure section

7. Click the Authorize button to grant admin consent and enable the necessary permissions.

8. Authenticate your account and allow required permissions

9. Review the fetched domains and proceed by clicking “Next”

10. Select the Group and and click on “Sync” and setup Auto Sync

====================================================================

• Click on the "New registration" option to initiate the creation of a new app registration.

• Provide a suitable name for the app. Eg: Threatcop Admin

• Once you have named the app, you will be prompted to choose "multi-tenant" as the account type. Additionally, specify the Redirect URL for user authentication.

• Enter the Redirect URL for user authentication based on your region:

      INDIA-Region: https://admin.threatcop.com/login 

      UAE-Region: https://admin.threatcop.ae/login 

      KSA-Region: https://ksa.admin.threatcop.com/login

       USA-Region: https://admin.threatcop.us/login

• To complete the registration process, click on the "Register" tab located at the bottom left corner of the page.

• Following a successful registration, navigate to the overview section and locate the "Redirect URI's" link.

• Click on add Redirect URL< Select a platform to add redirect URL<Single-page application
  

               

• Scroll down to the section that says “Single-page application” and paste the following URLs as per region

     INDIA-Region: https://admin.threatcop.com/directory/groups 

     UAE-Region: https://admin.threatcop.ae/directory/groups

            

• After registration, navigate to the API Permissions Section on the sidebar menu on the dashboard.

• On the API Permissions page, proceed to select the "Add Permissions" option.

• Following the previous step, a pop-up window will appear, resembling the screenshot below. From the "Microsoft APIs" section, choose "Microsoft Graph."

• Post this you need to select the “Application Permissions” as shown below. Within the "Select Permissions" section, utilize the search bar to look for "Group.Read.All" “Domain.Read.All” “User.Read.All “Directory.Read.All” and select all respectively. 
  

            

• Once the "All Permission" is selected in the search results, please proceed to save it.
  

• After the above step, click on Grant Admin consent
  

      

• After the above step, navigate to the Certificate & Secret section.
• Click on “New Client Secret” Name it and click on create and copy the Value and make a note.
  

• Now copy Client ID and Tenant ID from overview section

• Now login to threatcop admin then in the Directory section, navigate to Integrations and click Integrate on Microsoft Azure.

• Click the New Configuration button to set up your new Azure integration.

• Select an existing domain.

• Select the authorization method: Manual 

• Enter Client Id, Secret Id, Tenant Id and Click the Authorize. 

• Review your retrieved domain and click Next.

• Select the AD groups you want to synchronize and click Sync to begin the process.

• After completing the integration, click Sync to synchronize users between Threatcop Admin and Microsoft Azure AD.