Documentation Index

Fetch the complete documentation index at: https://support.appgate.com/llms.txt

Use this file to discover all available pages before exploring further.

Integrate Azure AD with ZTP using OIDC

  • Published on Jun 17, 2026
  • 2 minute read
Prev Next

Prerequisites

This integration requires the following:

  • An Azure Active Directory (AD) instance on the Microsoft Azure public cloud

  • An active ZTP account, accessible using the Bootstrap Identity provided by AppGate

  • A test user account on your Azure directory with at least the following attributes configured:

    • username, for example: testuser

    • firstName, for example: Joe

    • lastName, for example: Smith

NOTE

Attribute changes may take time to propagate. For details about creating a user account, refer to the Azure documentation.

Step 1: Add a new application in Azure

  1. Sign in to the Azure portal using your Azure Active Directory administrator account.

  2. In the left menu, go to Microsoft Entra ID > Enterprise Applications.

  3. Click New application, then click Create your own application.

  4. Enter a name, for example: AppGate ZTP.

  5. Under What are you looking to do with your application?, select App you're developing.

  6. Click Create.

  1. Select the account type appropriate for your organization.

  2. In the Redirect URI field, select Web and enter a placeholder URL, for example: https://example.com. You will replace this value after completing the ZTP Cloud Console configuration.

  3. Click Register.

NOTE

For additional details about creating an enterprise application, refer to the Azure Documentation.

Step 2: Configure the application

  1. Return to Microsoft Entra ID > Enterprise Applications and select the application you created.

  2. In the left menu, select Users and Groups, then click + Add user/group to add users to the application and enable login.

  1. In the left menu, select Properties, then click application registration.

Step 3: Record the client secret

  1. In the left menu, select Certificates & Secrets, then click + New Client Secret.

  2. Copy and save the Value field immediately. You will need this value for the ZTP configuration. This value is not visible after you leave this page.

Step 4: Record the client ID

  1. In the left menu, click Overview.

  1. Copy and save the Application (client) ID value. You will need this value for the ZTP configuration.

Step 5: Retrieve endpoint URLs

  1. In the top menu, click Endpoints.

  2. Copy the well-known configuration URL and open it in a new browser tab.

  3. Record the following values from the well-known configuration. You will need them to complete the ZTP configuration form:

ZTP field

Well-known configuration property

Authentication URL

authorization_endpoint

Token URL

token_endpoint

User info URL

userinfo_endpoint

JWKS URL

jwks_uri

Step 6: Configure the IdP in ZTP

  1. In ZTP, go to Settings > Identity Providers in the left menu.

  2. Click Add New and select Open ID provider.

  3. Complete the form using the following values:

Field

Description

Name*

Azure AD - OIDC

Audience/Client ID*

The Application (client) ID value recorded in Step 4.

Client Secret*

The client secret value recorded in Step 3.

Authentication URL*

URL values recorded in Step 5.

Token URL*

User Info URL

JWKS URL

Email Attribute*

http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress

First Name Attribute*

http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname

Last Name Attribute*

http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname

Username Attribute*

http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name

  1. Copy the Redirect URI from the ZTP configuration form by clicking the copy to clipboard button.

  1. Click Save and return to Azure.

Step 7: Set the redirect URI in Azure

  1. In the left menu, select Authentication.

  1. Replace the placeholder URL in the Redirect URI field with the Redirect URI you copied from ZTP.

  2. Click Save and test the integration.

Related articles