Important Notes: This article outlines the first step for configuring integration between Microsoft Teams and Risk Cloud. Please make sure you complete the following before proceeding to Configure Teams Integration in Risk Cloud.
1. Login to https://portal.azure.com/#home with a user that has either the Global Administrator role or Privileged Role Administrator, User Administrator, Privileged Authentication Administrator, or License Administrator roles.
2. Click the "View" button under "Manage Azure Active Directory."
3. Check if your organization has already registered Risk Cloud as an application in Azure. You can check by search for Risk Cloud Integration App (or other equivalent name) in the App registrations. Or contact your Admin to confirm.
- If you have already registered Risk Cloud in Azure, take note of Directory (tenant) IDs and continue to step #11. We will need to save this information to be stored in the RiskCloud completing Configure Teams Integration in Risk Cloud.
- If you have not registered Risk Cloud in Azure, then continue to step #4.
4. Click on "App registrations" on the left-hand side of the "Overview" screen.
5. Click "+ New Registration" near the top of the "App registrations" screen.
6. Give the new application a name, and be sure to have "Accounts in this organizational directory only" selected.
7. Click the "Register" button. You should be presented with a screen similar to the image below. Take note of Directory (tenant) IDs. We will need to save this information to be stored in the RiskCloud.
8. Click on “API permissions” on the left hand side, confirm that all of the following permissions are added.
9. Click on "Authentication" on the left-hand side of the screen.
10. Set "Allow public client flows" to "Yes" under the "Advanced settings" section
11. Click on "Home" in the top left of the screen, and then "View" under "Manage Azure Active Directory."
12. Click on "Users" on the left-hand side of the "Overview" screen.
13. Click "+ New user" and then "Create new user."
You can view this new user as a service account representing the Risk Cloud environment. This step will allow your users to send messages from Risk Cloud to Teams users and channels, including themselves.
- Create this user as any other user in the system. This will ensure proper functionality of the integration.
- Be sure to take note of the username. This information will be stored in the RiskCloud.
- The password you create here will be temporary. We will reset this password next.
- If the organization has MFA enabled, "Per-user MFA" can be configured on this screen. Be sure to turn it off for this new user.
- Ensure that you have assigned the proper Group memberships and Licenses to this user, as you would set up any other user. Pay special attention to which Group memberships and Licenses are assigned to this user, as the integration will only be able to message Channels and Members of those groups.
14. Once you have the username and password for this new user. Log out of the Azure portal and attempt to login to https://www.office.com/?auth=2 with this user in an Incognito tab (a "private" tab in your browser). You should be asked to reset your password. This password will be the new permanent password and should be strong. Take note of this newly created user's username and permanent password. You need to use this newly created user's username and permanent password to authenticate during the process to Configure Teams Integration in Risk Cloud.
15. Continue following the instructions to Configure Teams Integration in Risk Cloud.
Comments
0 comments
Please sign in to leave a comment.