LIQUENT InSight 6.2 Installation Guide

Enable Azure Active Directory (Azure SSO) for LIQUENT InSight 6.2

  1. Locate the insightConfig.bat file in the <installation drive>\InSightManager\server\all\conf\insight installation directory and double-click the file.
    The Configuration Settings window opens.
  2. On the Configuration Settings window, select File > Load File.
    The current configuration settings are populated to the Configuration Wizard.
  3. In the left pane, select Azure SSO Settings menu.
  4. Select Enable SSO.
  5. Populate the following fields:
    Field Name Input Value
    Application Logout URI https://login.microsoftonline.com/common/oauth2/logout?post_logout_redirect_uri=http(s)://{server}:{port}/insight
    Access Token URI https://login.microsoftonline.com/{Azure AD Directory ID}/oauth2/token
    Client ID <Azure AD Application ID>
    Client Secret <The secret Key for Azure App registrations>
    Key Discovery URI https://login.windows.net/common/discovery/keys
    User Authorization URI https://login.microsoftonline.com/<Azure AD Directory ID>/oauth2/authorize
    Issuer Base URI https://sts.windows.net
    Tenant ID <Azure AD Directory ID>
    SSO Trusted Applications <CSV of application_ids for service such as InSightX or LES>
    Graph API URI https://graph.windows.net
    Graph API Version 1.6
  6. Select File > Generate File.
    • The insight.var is successfully updated in the ..conf\insight directory with the correct settings.
    • The oracle-ds.xml is successfully updated in the ..server\all\deploy directory with the correct settings.
    • The login-config.xml is updated.
  7. Select File > Exit.
    The Configuration Wizard is closed.
  8. Locate the insight.var file in the <installation drive>\InSightManager\server\all\conf\insight installation directory and open for editing.
    The insight.var file is open.
  9. Select parameter user.source=ldap and change the value to "azure".
  10. Select parameter user.default.admin= CN\=admin,OU\={OrgUnit},DC\={domain controller},DC\=local and change value to registered Azure AD user. For Example: [email protected]
    The value is changed.
    Note: This user is assigned for first login into the system with enabled Azure SSO.
  11. Save all the changes in insight.var file and close the file.
  12. Restart the InSight service.