Set up Microsoft Entra ID with Open ID Connect Integration

About this task

Use this task to set up Microsoft Entra with Open ID Connect (OIDC).

Log into Microsoft Entra ID and select Extreme Networks > App > Registrations.
To create a new registration, in the Name field, enter ExtremeCloud Universal ZTNA – OIDC and select Register.
Select Redirect URIs > Add a platform.
Copy the current URIs listed under Web > Redirect URIs.
The format of the URIs will be similar to this example:
- https://zta-tme-2.qa.xcloudiq.com/auth/api/v1/accounts/microsoft/login/callback/
- https://zta-tme-2.qa.xcloudiq.com/auth/api/v1/accounts/invite/microsoft/signup/callback/
If this application will be used for Secure Network Access, scroll to the bottom of the Authentication screen and under Advanced Settings, in the Allow public client flows, select Yes.
Return to the Overview screen and take note of the Application (client) ID and the Directory (tenant) ID.
In the Client Credentials field, select Add a certificate or secret > New Client Secret > Add.

Note
Take note of the expiration date as the application will not be functional after the secret expires.
From the Certificates & Secrets screen, under the Clients Secret tab, in the Value field, copy the new token.
From the API Permissions screen, select Grant admin consent for [company name].
From the ExtremeCloud Universal ZTNA Onboarding screen, enter the noted Application (client) ID, Client Secret, and Directory (tenant) ID.
Select Validate Information.
When validation is complete, select Update > Confirm.