Share via

Conditional Access Custom controls

Raymond Bui 1 Reputation point
2022-11-30T12:31:54.683+00:00

I am trying to configure use DUO as my MFA. For the JSON it is asking for the ClientId. Where can I find the ClientId?

Microsoft Security Microsoft Entra Microsoft Entra ID

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Dillon Silzer 57,826 Reputation points Volunteer Moderator
    2022-11-30T14:00:01.29+00:00

    Hi @Raymond Bui

    Try the Applications Application ID as seen in the following article:

    https://dovestones.com/creating-a-client-id-to-connect-to-azure-ad-using-ad-phonebook/

    265772-image.png

    --------------------------------------

    If this is helpful please accept answer.

  2. JamesTran-MSFT 36,906 Reputation points Microsoft Employee Moderator
    2022-12-07T22:47:07.557+00:00

    @Raymond Bui
    Thank you for your post and I apologize for the delayed response!

    When it comes to finding the ClientID for DUO, I was able to reference the Duo Two-Factor Authentication for Microsoft Azure Active Directory documentation and it looks like you'll find the DUO Application ID on Step 7.

    Duo Two-Factor Authentication for Microsoft Azure Active Directory:

    1. Sign up for a Duo account.
    2. Log in to the Duo Admin Panel and navigate to Applications.
    3. Click Protect an Application and locate Microsoft Azure Active Directory in the applications list. Click Protect this Application.
    4. Before you can proceed, Duo needs read access to your Azure Active Directory tenant. Click the Authorize button, which takes you to the Azure portal.
      268383-image.png
    5. Sign in with the designated Azure service administrator account that has the global administrator role for this Azure Active Directory. If required, complete Azure MFA for that service account admin user.
      268358-image.png
    6. Once you've signed in to Azure, you must click Accept to grant Duo the read rights needed to access and read from your Azure Active Directory tenant.
      268359-image.png
    7. Accepting the Duo Azure Authentication application's permissions request redirects you back to the Microsoft Azure Active Directory application page in the Duo Admin Panel.
      Note the Custom control JSON text in the "Details" section of the page. You'll need to provide this information to Azure to complete Duo authentication setup.
      268394-image.png

    If you're still having issues finding your Application ID, or with Creating the Duo MFA Custom Control, I'd recommend reaching out to the Duo Community or Duo Customer Support so their experts can look into this issue as well.

    Additional Link:
    Duo Troubleshooting

    If you have any other questions, please let me know.
    Thank you for your time and patience throughout this issue.

    ----------

    Please remember to "Accept Answer" if any answer/reply helped, so that others in the community facing similar issues can easily find the solution.

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.