Solved

Connecting to Azure Active Directory (AAD)

5 months ago
September 27, 2024
3 replies
110 views

daniel
TimeXtender Xpert

Dear Community,

I’m having some issues with connecting to the Azure Active Directory. We want to use this data for RLS and feed this from the DWH.

I’ve set up the Active Directory Connector and put in credentials:

After a minute or so I get an timeout. If I leave out the OAuth stuff I get an not authorized. What do I need to set up here to get the data from the AAD?

Thanks!

Best answer by Thomas Lind

Hi @daniel

Just adding to what was already said. The app is important for this. It will read users and groups from the graph api. You can try it out in Postman if you want to be sure it has enough rights. CData states this as needed to gain access.

Select the Microsoft Graph API, and the following delegated permissions allow access to the full functionality of the driver:
Read and write all Domains, Groups

Read all Users, Directories, Devices, RoleManagement, Organization

If you have specified the use of permissions that require admin consent (such as the Application Permissions), you can grant them from the current tenant on the API Permissions page.

View original

Did this topic help you find an answer to your question?

rory.smith
TimeXtender Xpert
5 months ago
September 30, 2024

Hi @daniel ,

as you are not getting any rights errors (yet) I assume your App Registration permissions are correct. Have you set up level 3 verbosity logging and checked what is going on? Does lengthening timeouts give any results?

Christian Hauggaard
Community Manager
5 months ago
September 30, 2024

Hi @daniel

Please see documentation on how to establish a connection to Azure AD 2024 Cdata connector here:

https://cdn.cdata.com/help/CJK/ado/pg_connection.htm

Did you try clicking Authorize Oauth, and if so was the authorization successful?

If you still have issues please send a log file with verbosity level 3 to support@timextender.com

Thomas Lind
Community Manager
5 months ago
September 30, 2024

Hi @daniel

Select the Microsoft Graph API, and the following delegated permissions allow access to the full functionality of the driver:
Read and write all Domains, Groups

Read all Users, Directories, Devices, RoleManagement, Organization

If you have specified the use of permissions that require admin consent (such as the Application Permissions), you can grant them from the current tenant on the API Permissions page.

Reply

Cookie policy

We use cookies to enhance and personalize your experience. If you accept you agree to our full cookie policy. Learn more about our cookies.

Cookie settings

We use 3 different kinds of cookies. You can choose which cookies you want to accept. We need basic cookies to make this site work, therefore these are the minimum you can select. Learn more about our cookies.

Basic
Functional

Normal
Functional + analytics

Complete
Functional + analytics + social media + embedded videos

Reply

Related topics

How to configure proxies for two way DR?icon

VRO: Restore from Replication, fundamentals and deployment considerations

VRO: DataLabs, Recovery Verification from Backups

Veeam ONE Installation Error: Failed to Create Website

SysAdminDay Story: Humbling Experience

Most helpful members this week

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded

Cookie policy

Cookie settings