CINXE.COM

<!doctype html> <html lang="en" dir="ltr" class="docs-wrapper plugin-docs plugin-id-default docs-version-current docs-doc-page docs-doc-id-reference/integrations/azureactivedirectory" data-has-hydrated="false"> <head> <meta charset="UTF-8"> <meta name="generator" content="Docusaurus v3.6.3"> <title data-rh="true">Azure Active Directory | Cortex</title><meta data-rh="true" name="viewport" content="width=device-width,initial-scale=1"><meta data-rh="true" name="twitter:card" content="summary_large_image"><meta data-rh="true" property="og:url" content="https://docs.cortex.io/docs/reference/integrations/azureactivedirectory"><meta data-rh="true" property="og:locale" content="en"><meta data-rh="true" name="docusaurus_locale" content="en"><meta data-rh="true" name="docsearch:language" content="en"><meta data-rh="true" name="docusaurus_version" content="current"><meta data-rh="true" name="docusaurus_tag" content="docs-default-current"><meta data-rh="true" name="docsearch:version" content="current"><meta data-rh="true" name="docsearch:docusaurus_tag" content="docs-default-current"><meta data-rh="true" property="og:title" content="Azure Active Directory | Cortex"><meta data-rh="true" name="description" content="Microsoft Entra ID, formerly known as Azure Active Directory, is an identity service that provides SSO and authentication."><meta data-rh="true" property="og:description" content="Microsoft Entra ID, formerly known as Azure Active Directory, is an identity service that provides SSO and authentication."><link data-rh="true" rel="icon" href="/img/logo.webp"><link data-rh="true" rel="canonical" href="https://docs.cortex.io/docs/reference/integrations/azureactivedirectory"><link data-rh="true" rel="alternate" href="https://docs.cortex.io/docs/reference/integrations/azureactivedirectory" hreflang="en"><link data-rh="true" rel="alternate" href="https://docs.cortex.io/docs/reference/integrations/azureactivedirectory" hreflang="x-default"><link data-rh="true" rel="preconnect" href="https://3ZAQCSL5V0-dsn.algolia.net" crossorigin="anonymous"><link rel="preconnect" href="https://www.google-analytics.com"> <link rel="preconnect" href="https://www.googletagmanager.com"> <script async src="https://www.googletagmanager.com/gtag/js?id=G-1XPV2JL4TQ"></script> <script>function gtag(){dataLayer.push(arguments)}window.dataLayer=window.dataLayer||[],gtag("js",new Date),gtag("config","G-1XPV2JL4TQ",{})</script> <link rel="search" type="application/opensearchdescription+xml" title="Cortex" href="/opensearch.xml"><link rel="stylesheet" href="/assets/css/styles.bf1e3c49.css"> <script src="/assets/js/runtime~main.adcc11c4.js" defer="defer"></script> <script src="/assets/js/main.fdf13467.js" defer="defer"></script> </head> <body class="navigation-with-keyboard"> <script>!function(){function t(t){document.documentElement.setAttribute("data-theme",t)}var e=function(){try{return new URLSearchParams(window.location.search).get("docusaurus-theme")}catch(t){}}()||function(){try{return window.localStorage.getItem("theme")}catch(t){}}();t(null!==e?e:"light")}(),function(){try{const n=new URLSearchParams(window.location.search).entries();for(var[t,e]of n)if(t.startsWith("docusaurus-data-")){var a=t.replace("docusaurus-data-","data-");document.documentElement.setAttribute(a,e)}}catch(t){}}()</script><div id="__docusaurus"><div role="region" aria-label="Skip to main content"><a class="skipToContent_fXgn" href="#__docusaurus_skipToContent_fallback">Skip to main content</a></div><nav aria-label="Main" class="navbar navbar--fixed-top"><div class="navbar__inner"><div class="navbar__items"><button aria-label="Toggle navigation bar" aria-expanded="false" class="navbar__toggle clean-btn" type="button"><svg width="30" height="30" viewBox="0 0 30 30" aria-hidden="true"><path stroke="currentColor" stroke-linecap="round" stroke-miterlimit="10" stroke-width="2" d="M4 7h22M4 15h22M4 23h22"></path></svg></button><a class="navbar__brand" href="/"><div class="navbar__logo"><img src="/img/logo_full.webp" alt="Cortex Logo" class="themedComponent_mlkZ themedComponent--light_NVdE"><img src="/img/logo_full_white.webp" alt="Cortex Logo" class="themedComponent_mlkZ themedComponent--dark_xIcU"></div></a><a aria-current="page" class="navbar__item navbar__link navbar__link--active" href="/docs/reference">Reference</a><a class="navbar__item navbar__link" href="/docs/walkthroughs">Walkthroughs</a><a class="navbar__item navbar__link" href="/docs/api">API</a><a href="https://app.getcortexapp.com/" target="_blank" rel="noopener noreferrer" class="navbar__item navbar__link">Login</a></div><div class="navbar__items navbar__items--right"><div class="toggle_vylO colorModeToggle_DEke"><button class="clean-btn toggleButton_gllP toggleButtonDisabled_aARS" type="button" disabled="" title="Switch between dark and light mode (currently light mode)" aria-label="Switch between dark and light mode (currently light mode)" aria-live="polite" aria-pressed="false"><svg viewBox="0 0 24 24" width="24" height="24" class="lightToggleIcon_pyhR"><path fill="currentColor" d="M12,9c1.65,0,3,1.35,3,3s-1.35,3-3,3s-3-1.35-3-3S10.35,9,12,9 M12,7c-2.76,0-5,2.24-5,5s2.24,5,5,5s5-2.24,5-5 S14.76,7,12,7L12,7z M2,13l2,0c0.55,0,1-0.45,1-1s-0.45-1-1-1l-2,0c-0.55,0-1,0.45-1,1S1.45,13,2,13z M20,13l2,0c0.55,0,1-0.45,1-1 s-0.45-1-1-1l-2,0c-0.55,0-1,0.45-1,1S19.45,13,20,13z M11,2v2c0,0.55,0.45,1,1,1s1-0.45,1-1V2c0-0.55-0.45-1-1-1S11,1.45,11,2z M11,20v2c0,0.55,0.45,1,1,1s1-0.45,1-1v-2c0-0.55-0.45-1-1-1C11.45,19,11,19.45,11,20z M5.99,4.58c-0.39-0.39-1.03-0.39-1.41,0 c-0.39,0.39-0.39,1.03,0,1.41l1.06,1.06c0.39,0.39,1.03,0.39,1.41,0s0.39-1.03,0-1.41L5.99,4.58z M18.36,16.95 c-0.39-0.39-1.03-0.39-1.41,0c-0.39,0.39-0.39,1.03,0,1.41l1.06,1.06c0.39,0.39,1.03,0.39,1.41,0c0.39-0.39,0.39-1.03,0-1.41 L18.36,16.95z M19.42,5.99c0.39-0.39,0.39-1.03,0-1.41c-0.39-0.39-1.03-0.39-1.41,0l-1.06,1.06c-0.39,0.39-0.39,1.03,0,1.41 s1.03,0.39,1.41,0L19.42,5.99z M7.05,18.36c0.39-0.39,0.39-1.03,0-1.41c-0.39-0.39-1.03-0.39-1.41,0l-1.06,1.06 c-0.39,0.39-0.39,1.03,0,1.41s1.03,0.39,1.41,0L7.05,18.36z"></path></svg><svg viewBox="0 0 24 24" width="24" height="24" class="darkToggleIcon_wfgR"><path fill="currentColor" d="M9.37,5.51C9.19,6.15,9.1,6.82,9.1,7.5c0,4.08,3.32,7.4,7.4,7.4c0.68,0,1.35-0.09,1.99-0.27C17.45,17.19,14.93,19,12,19 c-3.86,0-7-3.14-7-7C5,9.07,6.81,6.55,9.37,5.51z M12,3c-4.97,0-9,4.03-9,9s4.03,9,9,9s9-4.03,9-9c0-0.46-0.04-0.92-0.1-1.36 c-0.98,1.37-2.58,2.26-4.4,2.26c-2.98,0-5.4-2.42-5.4-5.4c0-1.81,0.89-3.42,2.26-4.4C12.92,3.04,12.46,3,12,3L12,3z"></path></svg></button></div><div class="navbarSearchContainer_Bca1"><button type="button" class="DocSearch DocSearch-Button" aria-label="Search (Command+K)"><span class="DocSearch-Button-Container"><svg width="20" height="20" class="DocSearch-Search-Icon" viewBox="0 0 20 20" aria-hidden="true"><path d="M14.386 14.386l4.0877 4.0877-4.0877-4.0877c-2.9418 2.9419-7.7115 2.9419-10.6533 0-2.9419-2.9418-2.9419-7.7115 0-10.6533 2.9418-2.9419 7.7115-2.9419 10.6533 0 2.9419 2.9418 2.9419 7.7115 0 10.6533z" stroke="currentColor" fill="none" fill-rule="evenodd" stroke-linecap="round" stroke-linejoin="round"></path></svg><span class="DocSearch-Button-Placeholder">Search</span></span><span class="DocSearch-Button-Keys"></span></button></div></div></div><div role="presentation" class="navbar-sidebar__backdrop"></div></nav><div id="__docusaurus_skipToContent_fallback" class="main-wrapper mainWrapper_z2l0"><div class="docsWrapper_hBAB"><button aria-label="Scroll back to top" class="clean-btn theme-back-to-top-button backToTopButton_sjWU" type="button"></button><div class="docRoot_UBD9"><aside class="theme-doc-sidebar-container docSidebarContainer_YfHR"><div class="sidebarViewport_aRkj"><div class="sidebar_njMd"><nav aria-label="Docs sidebar" class="menu thin-scrollbar menu_SIkG"><ul class="theme-doc-sidebar-menu menu__list"><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-1 menu__list-item"><a class="menu__link" href="/docs/reference">Introduction</a></li><li class="theme-doc-sidebar-item-category theme-doc-sidebar-item-category-level-1 menu__list-item"><div class="menu__list-item-collapsible"><a class="menu__link">Basics</a></div><ul style="display:block;overflow:visible;height:auto" class="menu__list"><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/basics/entities">Entities</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/basics/entity-types">Entity types</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/basics/catalogs">Catalogs</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/basics/service-groups">Groups</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/basics/external-docs">External documentation</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/basics/dependencies">Dependencies</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/basics/ownership">Ownership</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/basics/custom-data">Custom data</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/basics/deploys">Deploys</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/basics/scorecards">Scorecards</a></li></ul></li><li class="theme-doc-sidebar-item-category theme-doc-sidebar-item-category-level-1 menu__list-item"><div class="menu__list-item-collapsible"><a class="menu__link menu__link--sublist menu__link--active" href="/docs/reference/integrations">Integrations</a><button aria-label="Collapse sidebar category &#x27;Integrations&#x27;" aria-expanded="true" type="button" class="clean-btn menu__caret"></button></div><ul style="display:block;overflow:visible;height:auto" class="menu__list"><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/argocd">ArgoCD</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/aws">AWS</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link menu__link--active" aria-current="page" tabindex="0" href="/docs/reference/integrations/azureactivedirectory">Azure Active Directory</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/azuredevops">Azure DevOps</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/azureresources">Azure Resources</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/bambooHR">BambooHR</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/bitbucket">Bitbucket</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/bugsnag">BugSnag</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/buildkite">Buildkite</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/checkmarx">Checkmarx</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/circleci">CircleCI</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/clickup">ClickUp</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/codecov">Codecov</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/coralogix">Coralogix</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/datadog">Datadog</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/dynatrace">Dynatrace</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/firehydrant">FireHydrant</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/github">GitHub</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/gitlab">GitLab</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/google">Google</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/grafana">Grafana</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/incidentio">incident.io</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/instana">Instana</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/jenkins">Jenkins</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/jira">Jira</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/kubernetes">Kubernetes</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/launchdarkly">LaunchDarkly</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/lightstep">Lightstep</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/mend">Mend</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/microsoftteams">Microsoft Teams</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/newrelic">New Relic</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/okta">Okta</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/opsgenie">Opsgenie</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/pagerduty">PagerDuty</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/prometheus">Prometheus</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/rollbar">Rollbar</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/sentry">Sentry</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/servicenow">ServiceNow</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/slack">Slack</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/snyk">Snyk</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/sonarqube">SonarQube</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/splunk-observability">Splunk Observability Cloud (SignalFx)</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/splunk">Splunk On-Call (VictorOps)</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/sumologic">Sumo Logic</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/veracode">Veracode</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/wiz">Wiz</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/workday">Workday</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/xmatters">xMatters</a></li></ul></li></ul></nav></div></div></aside><main class="docMainContainer_TBSr"><div class="container padding-top--md padding-bottom--lg"><div class="row"><div class="col docItemCol_xLCN"><div class="docItemContainer_jfFK"><article><nav class="theme-doc-breadcrumbs breadcrumbsContainer_Z_bl" aria-label="Breadcrumbs"><ul class="breadcrumbs" itemscope="" itemtype="https://schema.org/BreadcrumbList"><li class="breadcrumbs__item"><a aria-label="Home page" class="breadcrumbs__link" href="/"><svg viewBox="0 0 24 24" class="breadcrumbHomeIcon_YNFT"><path d="M10 19v-5h4v5c0 .55.45 1 1 1h3c.55 0 1-.45 1-1v-7h1.7c.46 0 .68-.57.33-.87L12.67 3.6c-.38-.34-.96-.34-1.34 0l-8.36 7.53c-.34.3-.13.87.33.87H5v7c0 .55.45 1 1 1h3c.55 0 1-.45 1-1z" fill="currentColor"></path></svg></a></li><li itemscope="" itemprop="itemListElement" itemtype="https://schema.org/ListItem" class="breadcrumbs__item"><a class="breadcrumbs__link" itemprop="item" href="/docs/reference/integrations"><span itemprop="name">Integrations</span></a><meta itemprop="position" content="1"></li><li itemscope="" itemprop="itemListElement" itemtype="https://schema.org/ListItem" class="breadcrumbs__item breadcrumbs__item--active"><span class="breadcrumbs__link" itemprop="name">Azure Active Directory</span><meta itemprop="position" content="2"></li></ul></nav><div class="tocCollapsible_ETCw theme-doc-toc-mobile tocMobile_ITEo"><button type="button" class="clean-btn tocCollapsibleButton_TO0P">On this page</button></div><div class="theme-doc-markdown markdown"><header><h1>Azure Active Directory</h1></header><div class="row"><div class="col col--12 markdown"><div id="tailwind"><div class="mb-3"><span class="badge badge--secondary margin-right--md">Auth</span><span class="badge badge--secondary margin-right--md">Teams</span></div></div> <p><a href="https://www.microsoft.com/en-us/security/business/identity-access/microsoft-entra-id" target="_blank" rel="noopener noreferrer">Microsoft Entra ID</a>, formerly known as Azure Active Directory, is an identity service that provides SSO and authentication.</p> <p>Integrating Cortex with Entra ID allows you to:</p> <ul> <li>Automatically discover and track Entra ID teams and team memberships</li> <li>Track ownership of entities</li> <li>Create <a href="#scorecards-and-cql">Scorecards</a> that track progress and drive alignment on projects involving your Entra ID teams</li> </ul> <div class="theme-admonition theme-admonition-caution admonition_xJq3 alert alert--warning"><div class="admonitionHeading_Gvgb"><span class="admonitionIcon_Rf37"><svg viewBox="0 0 16 16"><path fill-rule="evenodd" d="M8.893 1.5c-.183-.31-.52-.5-.887-.5s-.703.19-.886.5L.138 13.499a.98.98 0 0 0 0 1.001c.193.31.53.501.886.501h13.964c.367 0 .704-.19.877-.5a1.03 1.03 0 0 0 .01-1.002L8.893 1.5zm.133 11.497H6.987v-2.003h2.039v2.003zm0-3.004H6.987V5.987h2.039v4.006z"></path></svg></span>caution</div><div class="admonitionContent_BuS1"><p>For information on configuring Entra ID SSO for logging in to Cortex, see the <a href="https://docs.cortex.io/docs/walkthroughs/workspace-settings/configuring-sso/entraid" target="_blank" rel="noopener noreferrer">Microsoft Entra ID SSO documentation</a>.</p></div></div> <h2 class="anchor anchorWithStickyNavbar_LWe7" id="how-to-configure-entra-id-with-cortex">How to configure Entra ID with Cortex<a href="#how-to-configure-entra-id-with-cortex" class="hash-link" aria-label="Direct link to How to configure Entra ID with Cortex" title="Direct link to How to configure Entra ID with Cortex">​</a></h2> <div class="theme-admonition theme-admonition-caution admonition_xJq3 alert alert--warning"><div class="admonitionHeading_Gvgb"><span class="admonitionIcon_Rf37"><svg viewBox="0 0 16 16"><path fill-rule="evenodd" d="M8.893 1.5c-.183-.31-.52-.5-.887-.5s-.703.19-.886.5L.138 13.499a.98.98 0 0 0 0 1.001c.193.31.53.501.886.501h13.964c.367 0 .704-.19.877-.5a1.03 1.03 0 0 0 .01-1.002L8.893 1.5zm.133 11.497H6.987v-2.003h2.039v2.003zm0-3.004H6.987V5.987h2.039v4.006z"></path></svg></span>caution</div><div class="admonitionContent_BuS1"><p>If you do not see the settings page you&#x27;re looking for, you may not have permission to access that page. Please contact your admin for assistance.</p></div></div> <h3 class="anchor anchorWithStickyNavbar_LWe7" id="step-1-register-and-configure-a-new-active-directory-application">Step 1: Register and configure a new Active Directory application<a href="#step-1-register-and-configure-a-new-active-directory-application" class="hash-link" aria-label="Direct link to Step 1: Register and configure a new Active Directory application" title="Direct link to Step 1: Register and configure a new Active Directory application">​</a></h3> <ol> <li>Follow Microsoft&#x27;s documentation to <a href="https://learn.microsoft.com/en-us/entra/identity-platform/quickstart-register-app?tabs=certificate#register-an-application" target="_blank" rel="noopener noreferrer">register a new single tenant Entra ID application</a>.</li> <li>In your Entra ID admin center, navigate to your new application, and then to API Permissions. Add the following permissions:<!-- --> <ul> <li>Microsoft APIs &gt; Microsoft Graph &gt; Application permissions &gt; User &gt; <code>User.Read.All</code></li> <li>Microsoft APIs &gt; Microsoft Graph &gt; Application permissions &gt; Group &gt; <code>Group.Read.All</code></li> </ul> </li> <li>Click <strong>Grant Admin Consent</strong> to grant permissions for all accounts in the directory.</li> <li>Navigate to <strong>Certificates &amp; secrets</strong> and click <strong>New client secret</strong>.<!-- --> <ul> <li>Note that you will need to rotate the secret before the expiration date you set for it.</li> </ul> </li> <li>Navigate to the application&#x27;s Overview page and copy the client ID. You will need the client ID and secret in the next steps.</li> </ol> <h3 class="anchor anchorWithStickyNavbar_LWe7" id="step-2-configure-the-integration-in-cortex">Step 2: Configure the integration in Cortex<a href="#step-2-configure-the-integration-in-cortex" class="hash-link" aria-label="Direct link to Step 2: Configure the integration in Cortex" title="Direct link to Step 2: Configure the integration in Cortex">​</a></h3> <ol> <li>In Cortex, navigate to the <a href="https://app.getcortexapp.com/admin/settings/activedirectory" target="_blank" rel="noopener noreferrer">Azure Active Directory settings page</a>:<!-- --> <ol> <li>In Cortex, click your avatar in the lower left corner, then click <strong>Settings</strong>.</li> <li>Under &quot;Integrations&quot;, click <strong>Azure Active Directory</strong>.</li> </ol> </li> <li>Configure the integration form:<!-- --> <ul> <li><strong>Tenant ID</strong>: Enter your Entra ID <a href="https://learn.microsoft.com/en-us/entra/fundamentals/how-to-find-tenant#find-tenant-id-through-the-azure-portal" target="_blank" rel="noopener noreferrer">tenant ID</a>.</li> <li><strong>Client ID</strong> and <strong>Client secret</strong>: Enter the client ID and secret you generated in the previous steps.</li> </ul> </li> <li>Click <strong>Save</strong>.<!-- --> <ul> <li>You will be redirected to the Azure Active Directory settings page in Cortex, where you can optionally set a group filter to limit which groups are pulled in from Entra ID.</li> </ul> </li> </ol> <h2 class="anchor anchorWithStickyNavbar_LWe7" id="how-to-connect-cortex-entities-to-entra-id">How to connect Cortex entities to Entra ID<a href="#how-to-connect-cortex-entities-to-entra-id" class="hash-link" aria-label="Direct link to How to connect Cortex entities to Entra ID" title="Direct link to How to connect Cortex entities to Entra ID">​</a></h2> <h3 class="anchor anchorWithStickyNavbar_LWe7" id="import-entities-from-entra-id">Import entities from Entra ID<a href="#import-entities-from-entra-id" class="hash-link" aria-label="Direct link to Import entities from Entra ID" title="Direct link to Import entities from Entra ID">​</a></h3> <p>You can manually import entities from <!-- -->Azure Active Directory<!-- -->:</p> <ol> <li>In the main nav of Cortex, click <strong>Catalogs &gt; All entities</strong>.</li> <li>On the right side of the Entities page, click <strong>Import entities</strong>.</li> <li>Select the entity type.</li> <li>On the &quot;Import entities&quot; page, select <strong>Azure Active Directory</strong>.</li> <li>A list of discovered entities will appear. Click an entity to add it.<!-- --> <ul> <li>If your expected entities do not appear, click <strong>Sync entities</strong> in the upper left corner of the &quot;Import entities&quot; page.</li> </ul> </li> <li>When you are finished adding entities, click <strong>Add</strong>.</li> </ol> <h3 class="anchor anchorWithStickyNavbar_LWe7" id="editing-the-entity-descriptor">Editing the entity descriptor<a href="#editing-the-entity-descriptor" class="hash-link" aria-label="Direct link to Editing the entity descriptor" title="Direct link to Editing the entity descriptor">​</a></h3> <span>You can define the following block in your Cortex entity descriptor to add your <!-- -->Entra ID<!-- --> group as an owner.</span> <div class="language-yaml codeBlockContainer_Ckt0 theme-code-block" style="--prism-color:#393A34;--prism-background-color:#f6f8fa"><div class="codeBlockContent_biex"><pre tabindex="0" class="prism-code language-yaml codeBlock_bY9V thin-scrollbar" style="color:#393A34;background-color:#f6f8fa"><code class="codeBlockLines_e6Vv"><span class="token-line" style="color:#393A34"><span class="token key atrule" style="color:#00a4db">x-cortex-owners</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain"></span><br></span><span class="token-line" style="color:#393A34"><span class="token plain"> </span><span class="token punctuation" style="color:#393A34">-</span><span class="token plain"> </span><span class="token key atrule" style="color:#00a4db">type</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain"> group</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain"> </span><span class="token key atrule" style="color:#00a4db">name</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain"> Engineering </span><span class="token comment" style="color:#999988;font-style:italic"># group name in Entra ID</span><span class="token plain"></span><br></span><span class="token-line" style="color:#393A34"><span class="token plain"> </span><span class="token key atrule" style="color:#00a4db">provider</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain"> ACTIVE_DIRECTORY</span><br></span></code></pre><div class="buttonGroup__atx"><button type="button" aria-label="Copy code to clipboard" title="Copy" class="clean-btn"><span class="copyButtonIcons_eSgA" aria-hidden="true"><svg viewBox="0 0 24 24" class="copyButtonIcon_y97N"><path fill="currentColor" d="M19,21H8V7H19M19,5H8A2,2 0 0,0 6,7V21A2,2 0 0,0 8,23H19A2,2 0 0,0 21,21V7A2,2 0 0,0 19,5M16,1H4A2,2 0 0,0 2,3V17H4V3H16V1Z"></path></svg><svg viewBox="0 0 24 24" class="copyButtonSuccessIcon_LjdS"><path fill="currentColor" d="M21,7L9,19L3.5,13.5L4.91,12.09L9,16.17L19.59,5.59L21,7Z"></path></svg></span></button></div></div></div> <p>The group name is case-sensitive and should be exactly the same as in Entra ID.</p> <h2 class="anchor anchorWithStickyNavbar_LWe7" id="expected-results">Expected results<a href="#expected-results" class="hash-link" aria-label="Direct link to Expected results" title="Direct link to Expected results">​</a></h2> <h3 class="anchor anchorWithStickyNavbar_LWe7" id="teams-page">Teams page<a href="#teams-page" class="hash-link" aria-label="Direct link to Teams page" title="Direct link to Teams page">​</a></h3> <p>Under <strong>Catalogs &gt; Teams</strong>, you will see teams and team members pulled in from Entra ID.</p> <h3 class="anchor anchorWithStickyNavbar_LWe7" id="entity-pages">Entity pages<a href="#entity-pages" class="hash-link" aria-label="Direct link to Entity pages" title="Direct link to Entity pages">​</a></h3> <p>If you have ownership of entities set up, then Azure AD teams and users will be listed in the <strong>Owners</strong> page for an entity.</p> <h2 class="anchor anchorWithStickyNavbar_LWe7" id="scorecards-and-cql">Scorecards and CQL<a href="#scorecards-and-cql" class="hash-link" aria-label="Direct link to Scorecards and CQL" title="Direct link to Scorecards and CQL">​</a></h2> <p></p><p>With the <!-- -->Entra ID<!-- --> integration, you can create Scorecard rules and write CQL queries based on <!-- -->Entra ID<!-- --> <!-- -->teams<!-- -->.</p><p>See more examples in the <a href="https://app.getcortexapp.com/admin/cql-explorer" target="_blank" rel="noopener noreferrer">CQL Explorer</a> in Cortex.</p><p></p> <details class="details_lb9f alert alert--info details_b_Ee" data-collapsed="true"><summary><b>All ownership details</b></summary><div><div class="collapsibleContent_i85q"><p>A special built-in type that supports a null check or a count check, used to enforce ownership of entities.</p><p><strong>Definition:</strong> <code>ownership: Ownership | Null</code></p><details class="details_lb9f alert alert--info details_b_Ee" data-collapsed="true"><summary><b>Example</b></summary><div><div class="collapsibleContent_i85q"><p>An initial level in a security Scorecard might include a rule to ensure an entity has at least one team as an owner:</p><div class="codeBlockContainer_Ckt0 theme-code-block" style="--prism-color:#393A34;--prism-background-color:#f6f8fa"><div class="codeBlockContent_biex"><pre tabindex="0" class="prism-code language-text codeBlock_bY9V thin-scrollbar" style="color:#393A34;background-color:#f6f8fa"><code class="codeBlockLines_e6Vv"><span class="token-line" style="color:#393A34"><span class="token plain">ownership.teams().length &gt; 0</span><br></span></code></pre><div class="buttonGroup__atx"><button type="button" aria-label="Copy code to clipboard" title="Copy" class="clean-btn"><span class="copyButtonIcons_eSgA" aria-hidden="true"><svg viewBox="0 0 24 24" class="copyButtonIcon_y97N"><path fill="currentColor" d="M19,21H8V7H19M19,5H8A2,2 0 0,0 6,7V21A2,2 0 0,0 8,23H19A2,2 0 0,0 21,21V7A2,2 0 0,0 19,5M16,1H4A2,2 0 0,0 2,3V17H4V3H16V1Z"></path></svg><svg viewBox="0 0 24 24" class="copyButtonSuccessIcon_LjdS"><path fill="currentColor" d="M21,7L9,19L3.5,13.5L4.91,12.09L9,16.17L19.59,5.59L21,7Z"></path></svg></span></button></div></div></div></div></div></details></div></div></details> <details class="details_lb9f alert alert--info details_b_Ee" data-collapsed="true"><summary><b>All owner details</b></summary><div><div class="collapsibleContent_i85q"><p>List of owners, including team members and individual users, for each entity</p><p><strong>Definition:</strong> <code>ownership.allOwners()</code></p><details class="details_lb9f alert alert--info details_b_Ee" data-collapsed="true"><summary><b>Example</b></summary><div><div class="collapsibleContent_i85q"><p>The Scorecard might include a rule to ensure that entity owners all have an email set:</p><div class="codeBlockContainer_Ckt0 theme-code-block" style="--prism-color:#393A34;--prism-background-color:#f6f8fa"><div class="codeBlockContent_biex"><pre tabindex="0" class="prism-code language-text codeBlock_bY9V thin-scrollbar" style="color:#393A34;background-color:#f6f8fa"><code class="codeBlockLines_e6Vv"><span class="token-line" style="color:#393A34"><span class="token plain">ownership.allOwners().all((member) =&gt; member.email != null)</span><br></span></code></pre><div class="buttonGroup__atx"><button type="button" aria-label="Copy code to clipboard" title="Copy" class="clean-btn"><span class="copyButtonIcons_eSgA" aria-hidden="true"><svg viewBox="0 0 24 24" class="copyButtonIcon_y97N"><path fill="currentColor" d="M19,21H8V7H19M19,5H8A2,2 0 0,0 6,7V21A2,2 0 0,0 8,23H19A2,2 0 0,0 21,21V7A2,2 0 0,0 19,5M16,1H4A2,2 0 0,0 2,3V17H4V3H16V1Z"></path></svg><svg viewBox="0 0 24 24" class="copyButtonSuccessIcon_LjdS"><path fill="currentColor" d="M21,7L9,19L3.5,13.5L4.91,12.09L9,16.17L19.59,5.59L21,7Z"></path></svg></span></button></div></div></div></div></div></details></div></div></details> <details class="details_lb9f alert alert--info details_b_Ee" data-collapsed="true"><summary><b>Team details</b></summary><div><div class="collapsibleContent_i85q"><p>List of teams for each entity</p><p><strong>Definition:</strong> <code>ownership.teams(): List&lt;Team&gt;</code></p><details class="details_lb9f alert alert--info details_b_Ee" data-collapsed="true"><summary><b>Example</b></summary><div><div class="collapsibleContent_i85q"><p>The Scorecard might include a rule to ensure that an entity owners all have a description and are not archived:</p><div class="codeBlockContainer_Ckt0 theme-code-block" style="--prism-color:#393A34;--prism-background-color:#f6f8fa"><div class="codeBlockContent_biex"><pre tabindex="0" class="prism-code language-text codeBlock_bY9V thin-scrollbar" style="color:#393A34;background-color:#f6f8fa"><code class="codeBlockLines_e6Vv"><span class="token-line" style="color:#393A34"><span class="token plain">ownership.teams().all(team =&gt; team.description != null and team.isArchived == false)</span><br></span></code></pre><div class="buttonGroup__atx"><button type="button" aria-label="Copy code to clipboard" title="Copy" class="clean-btn"><span class="copyButtonIcons_eSgA" aria-hidden="true"><svg viewBox="0 0 24 24" class="copyButtonIcon_y97N"><path fill="currentColor" d="M19,21H8V7H19M19,5H8A2,2 0 0,0 6,7V21A2,2 0 0,0 8,23H19A2,2 0 0,0 21,21V7A2,2 0 0,0 19,5M16,1H4A2,2 0 0,0 2,3V17H4V3H16V1Z"></path></svg><svg viewBox="0 0 24 24" class="copyButtonSuccessIcon_LjdS"><path fill="currentColor" d="M21,7L9,19L3.5,13.5L4.91,12.09L9,16.17L19.59,5.59L21,7Z"></path></svg></span></button></div></div></div></div></div></details></div></div></details> <h2 class="anchor anchorWithStickyNavbar_LWe7" id="background-sync">Background sync<a href="#background-sync" class="hash-link" aria-label="Direct link to Background sync" title="Direct link to Background sync">​</a></h2> <p>Cortex conducts an ownership sync every day at 6 a.m. UTC.</p> <h2 class="anchor anchorWithStickyNavbar_LWe7" id="faq-and-troubleshooting">FAQ and Troubleshooting<a href="#faq-and-troubleshooting" class="hash-link" aria-label="Direct link to FAQ and Troubleshooting" title="Direct link to FAQ and Troubleshooting">​</a></h2> <h4 class="anchor anchorWithStickyNavbar_LWe7" id="why-were-all-my-entra-id-users-unexpectedly-deleted-after-rotating-my-client-secret">Why were all my Entra ID users unexpectedly deleted after rotating my client secret?<a href="#why-were-all-my-entra-id-users-unexpectedly-deleted-after-rotating-my-client-secret" class="hash-link" aria-label="Direct link to Why were all my Entra ID users unexpectedly deleted after rotating my client secret?" title="Direct link to Why were all my Entra ID users unexpectedly deleted after rotating my client secret?">​</a></h4> <p>Updating your configuration can cause a temporary deletion of users. When you delete the old secret from your Azure AD configuration in Cortex, a sync is triggered to delete the users. The addition of the new secret to your configuration will trigger a sync to add the users. There may be a delay before seeing the users re-added.</p> <h2 class="anchor anchorWithStickyNavbar_LWe7" id="still-need-help">Still need help?<a href="#still-need-help" class="hash-link" aria-label="Direct link to Still need help?" title="Direct link to Still need help?">​</a></h2> <p>The following are all the ways to get assistance from our customer engineering team. Please use the option that is best for your users:</p> <ul> <li>Email: <a href="mailto:help@cortex.io" target="_blank" rel="noopener noreferrer">help@cortex.io</a>, or open a support ticket in the in app Resource Center</li> <li>Chat: Available in the Resource Center</li> <li>Slack: Users with a connected Slack channel will have a workflow added to their account. From here, you can either @CortexTechnicalSupport or add a <code>:ticket:</code> reaction to a question in Slack, and the team will respond directly.</li> </ul> <p>Don’t have a Slack channel? Talk with your customer success manager.</p></div></div></div><div class="row"><div class="col col--12"></div></div></article><div class="row"><div class="col col--12"><nav class="pagination-nav docusaurus-mt-lg" aria-label="Docs pages"><a class="pagination-nav__link pagination-nav__link--prev" href="/docs/reference/integrations/aws"><div class="pagination-nav__sublabel">Previous</div><div class="pagination-nav__label">AWS</div></a><a class="pagination-nav__link pagination-nav__link--next" href="/docs/reference/integrations/azuredevops"><div class="pagination-nav__sublabel">Next</div><div class="pagination-nav__label">Azure DevOps</div></a></nav></div></div></div></div><div class="col col--3"><div class="tableOfContents_bqdL thin-scrollbar theme-doc-toc-desktop"><ul class="table-of-contents table-of-contents__left-border"><li><a href="#how-to-configure-entra-id-with-cortex" class="table-of-contents__link toc-highlight">How to configure Entra ID with Cortex</a><ul><li><a href="#step-1-register-and-configure-a-new-active-directory-application" class="table-of-contents__link toc-highlight">Step 1: Register and configure a new Active Directory application</a></li><li><a href="#step-2-configure-the-integration-in-cortex" class="table-of-contents__link toc-highlight">Step 2: Configure the integration in Cortex</a></li></ul></li><li><a href="#how-to-connect-cortex-entities-to-entra-id" class="table-of-contents__link toc-highlight">How to connect Cortex entities to Entra ID</a><ul><li><a href="#import-entities-from-entra-id" class="table-of-contents__link toc-highlight">Import entities from Entra ID</a></li><li><a href="#editing-the-entity-descriptor" class="table-of-contents__link toc-highlight">Editing the entity descriptor</a></li></ul></li><li><a href="#expected-results" class="table-of-contents__link toc-highlight">Expected results</a><ul><li><a href="#teams-page" class="table-of-contents__link toc-highlight">Teams page</a></li><li><a href="#entity-pages" class="table-of-contents__link toc-highlight">Entity pages</a></li></ul></li><li><a href="#scorecards-and-cql" class="table-of-contents__link toc-highlight">Scorecards and CQL</a></li><li><a href="#background-sync" class="table-of-contents__link toc-highlight">Background sync</a></li><li><a href="#faq-and-troubleshooting" class="table-of-contents__link toc-highlight">FAQ and Troubleshooting</a></li><li><a href="#still-need-help" class="table-of-contents__link toc-highlight">Still need help?</a></li></ul></div></div></div></div></main></div></div></div></div> </body> </html>

Pages: 1 2 3 4 5 6 7 8 9 10