Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
When using Microsoft Entra ID as your identity solution, do the following:
- Add the Dragon Copilot APIs multi-tenant (enterprise) applications to your Microsoft Entra tenant.
- Create a Microsoft Entra application.
- Add your Microsoft Entra tenant ID and application object ID to the Dragon Copilot allow list.
Add the Dragon Copilot APIs applications
The Dragon Copilot APIs can be authenticated using Microsoft Entra access tokens issued by your tenant. To enable this, add the Dragon Copiot APIs applications to your tenant.
You can use the command line interface (CLI):
az ad sp create --id <application (client) ID of Partner API to add>
The application (client) ID of the Dragon Copilot APIs application is different for production and non-production environments:
| Environment | Application (client) ID |
|---|---|
| Non-production | 105be974-d66d-43c9-b813-57a967bbfd21 |
| Production | 105be974-d66d-43c9-b813-57a967bbfd21 |
Proceed as follows:
Open a PowerShell or Windows command prompt and sign in to Azure:
az loginA browser window opens and you're prompted for credentials.
Note: If you have a Microsoft Entra tenant but don't have an Azure subscription, you can sign in with the
--allow-no-subscriptionsoption.Once you're signed in, add the Dragon Copilot APIs application:
Non-production:
az ad sp create --id 105be974-d66d-43c9-b813-57a967bbfd21Production:
az ad sp create --id 105be974-d66d-43c9-b813-57a967bbfd21When you sign in to the Azure portal and navigate to the Microsoft Entra ID blade, your application should be listed.
Create a Microsoft Entra application
Create the Microsoft Entra application (service principal) that will be used to obtain the access token needed to call the Dragon Copilot APIs.
Create the application using a command prompt
Enter the following commands in PowerShell or a command prompt using the Azure CLI:
$sp = az ad sp create-for-rbac -n <service principal name> | ConvertFrom-Json
az ad app update --sign-in-audience AzureADMyOrg --id $sp.appId
When you sign in to the Azure portal and navigate to the App registrations blade, your application should be listed.
Create the application via the Azure portal
To create the application in Azure, do the following:
Sign in to the Azure portal and navigate to the Microsoft Entra ID blade. Select App registration > New registration.
Enter a name for the application (service principal), select Accounts in this organizational directory only to indicate it will only be used in your tenant, and select Register.
Add your Microsoft Entra tenant ID and application object ID to the Dragon Copilot allow list
See Allow list.