Introduction
In this article, we will show you how to host your Windows instances on Microsoft Azure and provide web access to multiple concurrent users with Azure Active Directory and how to integrate our Thinfinity® Workspace with Azure AD and OAuth 2.0:
Tutorial
Sign in with your Azure account.
Go to Azure Active Directory.
On the left menu, click on “App Registrations”.
To add a new registry, click on “New Registration”.Integrated Thinfinity Workspace 6.0 with Azure Active Directory and OAuth 2.0 – 03
Write a name for the application in the text box.
Supported account types: accounts in this organizational directory only (comes by default).
On the redirect URL, you must select “web” and write the URL (must start with https://), followed by the port you choose to use. For example:
https://myThinfinityServer:[Port]/azure
Integrated Thinfinity Workspace 6.0 with Azure Active Directory and OAuth 2.0 – 04
Click on “Register”.Integrated Thinfinity Workspace 6.0 with Azure Active Directory and OAuth 2.0 – 05
Once it is registered, you will be able to see the Essentials. On the left menu, click on “Certificates and Secrets”.Integrated Thinfinity Workspace 6.0 with Azure Active Directory and OAuth 2.0 – 06
You should see Certificates and Client Secrets. Pick “Client secrets”, and click on “New client secret”.Integrated Thinfinity Workspace 6.0 with Azure Active Directory and OAuth 2.0 – 07
Then, type in any description and set the expiration date. When you finish, click on “Add”.
Integrated Thinfinity Workspace 6.0 with Azure Active Directory and OAuth 2.0 – 08
Copy the ‘Value’ field once the Client Secret is available. Integrated Thinfinity Workspace 6.0 with Azure Active Directory and OAuth 2.0 – 09
Then, go back to the first item on the left menu, “overview” and copy the Application (client) ID. Integrated Thinfinity Workspace 6.0 with Azure Active Directory and OAuth 2.0 – 10
Once copied, go to your Thinfinity® Configuration Manager, click on the tab “Authentication”, click on the tab “Methods” and then “Add”.Integrated Thinfinity Workspace 6.0 with Azure Active Directory and OAuth 2.0 – 12
Choose the option “OAuth2.0”, and then “Azure”.
A new window will pop up. Paste the “Application (client) ID” and the ‘Client Secret’ you have previously copied from the portal. Integrated Thinfinity Workspace 6.0 with Azure Active Directory and OAuth 2.0 – 13
Then go to the next tab “Server” and copy, from the portal, the Directory (tenant) ID and replace [DirectoryID] in Authorization URL and in Token Validation Server URL (remember to erase the “[square brackets]”).Integrated Thinfinity Workspace 6.0 with Azure Active Directory and OAuth 2.0 – 14
Integrated Thinfinity® Workspace 6.0 with Azure Active Directory and OAuth 2.0 – 15
Type in “*” on the ID mask to allow all elements, and click ”OK“.
Now we need to add the “Associated Permissions”. Click on the “Add” button below and add a valid Local / AD user:
Go to your Thinfinity® URL on your browser and finally click on “Log in with Azure”:
Click on “Register”.
Once it is registered, you will be able to see the Essentials. On the left menu, click on “Certificates and Secrets”.
You should see Certificates and Client Secrets. Pick “Client secrets”, and click on “New client secret”.
Then, type in any description and set the expiration date. When you finish, click on “Add”.
Copy the “Value” field once the Client Secret is available.
Then, go back to the first item on the left menu, “overview” and copy the Application (client) ID.
Once copied, go to your Thinfinity® Configuration Manager, click on the tab “Authentication”, click on the tab “Methods” and then “Add”.
Choose the option “OAuth2.0”, and then “Azure”.
A new window will pop up. Paste the “Application (client) ID” and the “Client Secret” you have previously copied from the portal.
Then go to the next tab “Server” and copy, from the portal, the Directory (tenant) ID and replace [DirectoryID] in Authorization URL and in Token Validation Server URL (remember to erase the “[square brackets]”).
Now you should be able to log in with Azure. Let us know how it worked for you!