You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: Deployment/README.md
+30-1Lines changed: 30 additions & 1 deletion
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -47,7 +47,7 @@ Run the following commands to deploy the resources with a Tenant Admin account.
47
47
48
48
While most of the deployment is automated, you will be prompted to login again to your Azure account.
49
49
50
-
###Post Deployment
50
+
## Post Deployment
51
51
Once the deployment is complete, you will need to gran Admin consent to the deployed applications.
52
52
- Navigate to the Azure Portal and go to the Microsoft Entra ID.
53
53
- Click on App Registrations.
@@ -61,6 +61,7 @@ The WebApi provides roles that can be assigned to users. See these relevant sect
61
61
-[Roles as policy to gate functionality](https://github.com/microsoftgraph/group-membership-management/blob/main/Service/GroupMembershipManagement/Hosts/WebApi/Documentation/WebApiSetup.md#roles-as-policy-to-gate-functionality)
62
62
-[Add a role to a group](https://github.com/microsoftgraph/group-membership-management/blob/main/Service/GroupMembershipManagement/Hosts/WebApi/Documentation/WebApiSetup.md#add-a-role-to-a-group)
If you opted to use a certificate for the Microsoft Graph API `<solutionAbbreviation>-Graph-<environmentAbbreviation>`, follow these steps to complete the configuration.
77
+
78
+
1. Create a self-signed certificate. See [Quickstart: Set and retrieve a certificate from Azure Key Vault using the Azure portal](https://docs.microsoft.com/en-us/azure/key-vault/certificates/quick-create-portal)
79
+
2. Upload the certificate to your `<solutionAbbreviation>`-Graph-`<environmentAbbreviation>` application.
80
+
81
+
We need to upload the certificate to the `<solutionAbbreviation>`-Graph-`<environmentAbbreviation>` application, in order to do that, we need to export it from the prereqs keyvault.
82
+
83
+
Exporting the certificate:
84
+
85
+
1. In the Azure Portal navigate to your prereqs keyvault, it will be named following this convention `<solutionAbbreviation>`-prereqs-`<environmentAbbreviation>`.
86
+
2. Locate and click on the Certificates blade on the left menu.
87
+
3. Click on your certificate from the list.
88
+
4. Click on the latest version.
89
+
5. On the top menu click on 'Download in CER format' button to download the certificate.
90
+
91
+
If you need more details on how to export the certificate please see [Quickstart: Set and retrieve a certificate from Azure Key Vault using the Azure portal](https://docs.microsoft.com/en-us/azure/key-vault/certificates/quick-create-portal) documentation.
92
+
93
+
Uploading the certificate:
94
+
95
+
1. In the Azure Portal navigate to Microsoft Entra ID. If you don't see it on your screen you can use the top search bar to locate it.
96
+
2. Navigate to 'App registrations' blade on the left menu.
97
+
3. Click on 'All applications" to locate and open your `<solutionAbbreviation>`-Graph-`<environmentAbbreviation>` application.
98
+
4. On your application screen click on 'Certificates and secrets' blade on the left menu.
0 commit comments