Skip Navigation
  1. BlackBerry Docs
  2. BlackBerry UEM 12.13
  3. Administration
  4. Windows 10 Planning and Deployment Guide
  5. Configuring UEM to manage apps for Windows 10 devices
  6. Connecting BlackBerry UEM to Microsoft Azure
  7. Create an enterprise endpoint in Azure

Create an enterprise endpoint in 
Azure

To provide 
BlackBerry UEM
 access to 
Microsoft Azure
, you must create an enterprise endpoint within 
Azure
. The enterprise endpoint allows 
BlackBerry UEM
 to authenticate with 
Microsoft Azure
. For more information, see https://docs.microsoft.com/en-us/azure/active-directory/active-directory-app-registration.
  1. Log in to the Azure portal.
  2. Go to 
    Microsoft Azure > Azure Active Directory > App registrations
    .
  3. Click 
    Endpoints
    .
  4. Copy the 
    OAUTH 2.0 TOKEN ENDPOINT
     value and paste it to a text file.
    This is the 
    OAUTH 2.0 token endpoint
     required in 
    BlackBerry UEM
    .
  5. Close the 
    Endpoints
     list and select 
    New application registration
    .
  6. Enter the following information for your app:
    Field
    Setting
    Name
    <A name for your application>
    Application type
    Web app / API
    Sign-on URL
    Any valid URL
    If you don't have a registered domain you can use: http://localhost/
  7. Click 
    Create
    .
  8. Click on the app you just created.
  9. Copy the 
    Application ID
     of your application and paste it to a text file.
    This is the 
    Client ID
     required in 
    BlackBerry UEM
    .
  10. If you are creating the application to use 
    Microsoft Intune
    , click 
    Required permissions
     in the 
    Settings
     menu. Perform the following steps:
    1. Click 
      Add
      .
    2. Click 
      Select an API
      .
    3. Select 
      Microsoft Graph
      .
    4. Click 
      Select
      .
    5. Scroll down in the permissions list and under 
      Delegated Permissions
      , set the following permissions for 
      Microsoft Intune
      :
      • Read and write 
        Microsoft Intune
         apps (preview)
      • Read all users' basic profile
      • Read all groups
    6. Click 
      Select
      .
    7. Click 
      Done
      .
    8. In the 
      Required permissions
       pane, click 
      Grant Permissions
      .
      You must be a global administrator to grant permissions.
    9. When you are prompted, click 
      Yes
       to grant permissions for all accounts in the current directory.
    You can use the default permissions if you are creating the app to connect to the 
    Windows Store
     for Business.
  11. Select 
    Keys
     in the 
    Settings
     menu. Perform the following steps:
    1. Enter a name for your key.
    2. Select a duration for your key.
    3. Click 
      Save
      .
    4. Copy the value of your key.
      This is the 
      Client Key
       that is required in 
      BlackBerry UEM
      .
      If you do not copy the value of your key at this time, you will have to create a new key because the value is not displayed after you leave this screen.