Skip to main content

How to Integrate Kendis with Microsoft Azure Entra ID

Kendis and Entra ID integration

Kendis Team avatar
Written by Kendis Team
Updated over a week ago

This guide provides step-by-step instructions for setting up an Azure Entra ID application and connecting it to your Kendis account. The process involves configuring settings in both the Azure portal and your Kendis ALM settings.

Part 1: Create and Configure the Application in Azure

The first step is to register a new application within your Azure environment.

  1. Log in to the Azure Portal at portal.azure.com.

  2. Navigate to Microsoft Entra ID from the list of Azure Services.

  3. Select Add > Enterprise Applications

  4. Select "Create your own application"

    1. Name of your application, e.g., "Kendis Entra ID Integration"

    2. Select Register an application to integrate with Microsoft Entra ID (App you're developing)

    3. Press Create

  5. Under the "Manage" menu on the left, go to Applications > App registrations.

  6. Click + New registration.

  7. On the "Register an application" screen:

    1. Name: Enter a descriptive name for your application (e.g., "Kendis Integration").

    2. Supported account types: Ensure that "Accounts in this organizational directory only (Default Directory only - Single tenant)" is selected.

    3. Click Register.

  8. Once the app is created, navigate to the App roles section under the "Manage" menu on the left.

    1. Click + Create app role.

    2. Fill in the details for the new role:

      1. Display name: Allowed Members

      2. Allowed member types: Select Users/Groups.

      3. Value: Task.Write (or a suitable value for your permissions).

      4. Description: A clear description, such as "For Kendis access".

      5. Ensure the "Do you want to enable this app role?" checkbox is checked

    3. Click Apply.

  9. Navigate to Expose an API section under "Manage" menu

    1. Click + Add a scope

    2. Fill the form with details

      1. Scope name "user_impersonation"

      2. Admin consent display name

      3. Admin consent description

    3. Click "Add scope"

  10. Navigate to the API permissions section under the "Manage" menu.

    1. Click + Add a permission.

    2. Select Azure DevOps.

    3. Select Delegated permissions.

    4. Check the following permissions:

      1. user_impersonation

      2. vso.project_manage

      3. vso.work_full

      4. vso.memberentitlementmanagement_read

    5. Click Add permissions. Your configured permissions should now be listed.

Part 2: Get the Callback URL from Kendis

Now, you need to get the specific Redirect URI from your Kendis account.

  1. Log in to your Kendis account.

  2. Navigate to Settings > ALM Accounts.

  3. Click Add ALM Account.

    1. You can also edit existing ALM account and change the type from PAT/oAuth to Entra ID

  4. Configure the account:

    1. Account Type: Select AzureDevOps.

    2. Connect to ADO: Choose the Microsoft Entra ID option.

    3. You will now see a Callback URL field. Click the Copy URL button to copy this value to your clipboard.

Part 3: Finalize Azure Configuration

Go back to your Azure application to add the Callback URL and create a client secret.

  1. In your Azure app registration, navigate to the Authentication section under the "Manage" menu.

  2. Click + Add a platform and select Web.

  3. In the "Redirect URIs" field, paste the Callback URL you copied from Kendis.

  4. Click Configure.

  5. Navigate to the Certificates & secrets section under the "Manage" menu.

  6. Click + New client secret.

  7. Add a description (e.g., "For Kendis") and set an expiration period. Click Add.

  8. IMPORTANT: A secret Value will now be displayed. Copy this value immediately and save it somewhere secure. You will not be able to see this value again after you leave this page.

Part 4: Finalize Kendis Configuration

Finally, go back to Kendis to enter the credentials you've just created.

  1. In your Azure app registration, go to the Overview section.

  2. Copy the Application (client) ID.

  3. Paste this value into the Client ID field in your Kendis ALM Account setup.

  4. Copy the Directory (tenant) ID.

  5. Paste this value into the Directory ID field in Kendis.

  6. Paste the secret Value you copied in Part 3 into the Client Secret field in Kendis.

  7. Click Get Auth Token. You will be redirected to a Microsoft login and authorization screen. Follow the prompts to grant consent.

  8. Once authorized, you will be returned to Kendis. Select the Azure DevOps Organization you wish to connect to from the dropdown menu.

  9. Click Test Connection to verify the setup, then Save the ALM Account.

Your integration between Kendis and Azure Entra ID is now complete.

Related Articles
How to Integrate Kendis with Jira Cloud
How to Integrate Kendis with Jira Server (Enterprise Network Only)
SSO Integration: Microsoft Entra ID (Azure AD) with Kendis using SAML
OAuth Setup: Configuring Your Kendis Personal Profile (ALM) for Azure DevOps Integration
Integrate Kendis with Jira Server Using OAuth 2.0
Did this answer your question?