Calyx RIM 6.2 CHF 2 Installation Guide

Enable Azure Active Directory (Azure SSO)

  1. Locate the insightConfig.bat file in the <installation drive>\InSightManager\server\all\conf\insight installation directory and double-click the file.
    The Configuration Settings window appears.
  2. In the left top menu of the Configuration Settings window, select File > Load File.
    The current configuration settings are populated to the Configuration Wizard.
  3. In the left pane, select Identity Provider Settings.
  4. Populate the following fields:
    Field Name Input Value
    Identity Provider Type Azure Active Directory
    Application Logout URI https://login.microsoftonline.com/common/oauth2/logout?post_logout_redirect_uri=http(s)://{server}:{port}/insight
    Access Token URI https://login.microsoftonline.com/{Azure AD Directory ID}/oauth2/token
    Client ID <Azure AD Application ID>
    Client Secret <The secret Key for Azure App registrations>
    Key Discovery URI https://login.windows.net/common/discovery/keys
    User Authorization URI https://login.microsoftonline.com/<Azure AD Directory ID>/oauth2/authorize
    Issuer Base URI https://sts.windows.net
    Tenant ID <Azure AD Directory ID>
    SSO Trusted Applications <CSV of application_ids for service such as InSightX or LES>
    Graph API URI https://graph.windows.net
    Graph API Version 1.6
    Default Admin <Registered Azure AD user> For Example: "[email protected]"
  5. Select File > Generate File.
    • The insight.var is successfully updated in the ..conf\insight directory with the correct settings.
    • The oracle-ds.xml is successfully updated in the ..server\all\deploy directory with the correct settings.
    • The login-config.xml is updated.
  6. Select File > Exit.
    The Configuration Wizard is closed.
  7. Restart the Calyx RIM service.