Install Platform-Enabled Jet Service Tier or Jet Hub with Microsoft Entra ID Authentication
To install Jet Hub or Jet Service Tier with Microsoft Entra ID authentication, perform the following steps:
Configure Microsoft Entra ID for Jet Hub
To configure the Microsoft Entra ID for Jet Hub, perform the following steps:
Register an application
To register an application, perform the following steps:
-
Sign in to Azure portal (Microsoft Azure).
Important: The user signing in need not be an Azure administrator, but admin consent will be required at a specific point in the process.
Go to Microsoft Entra ID > App registrations > +New registration. The Register an application page is displayed.
In Name, provide a name for your application.
In Supported Account Types , select Account in this organizational directory only (This is the default setting).
-
In Redirect URI (optional), select Web from the dropdown and enter your Jet Hub URL.
The URL must start with https:// and contain the base URL that users use to sign in to the Jet Hub. The URL either contains the machine name on which the Jet Hub is installed or the DNS entry for the Jet Hub site.
Examples:
https://myservername.mydomain.com
https://dnsname.mydomain.com
Click Register.
Configure the Application
To configure application, perform the following steps:
Sign in to Azure portal (Microsoft Azure).
-
Go to the Authentication page. The Authentication page is displayed.
-
In Web > Redirect URIs, add the following URIs:
https://<JetHubURL>/account/logout
https://<JetHubURL>/signin-aad
https://<JetHubURL>/identity/signin-aad
https://<JetHubURL>/identity/external/callback
-
In Front-channel logout URL, add the following URL:
https://<JetHubURL>/account/logout
Select Access tokens (used for implicit flows) and ID tokens (used for implcit and hybrid flows) to enable implicit grant and hybrid flow.
Click Save.
-
-
Go to Certificates & secrets > Client secrets > +New client secret. The Add a client secret window is displayed.
In Description, enter a description for your client secret.
In Expires, choose the appropriate expiration time.
-
Select Add. The Client secrets tab is displayed.
Make note of the generated secret value.
-
Go to API permissions > +Add a permission > APIs my organization uses. search and select Microsoft Graph. The Microsoft Graph window is displayed.
-
Select Application permissions.
Expand Directory and select Directory.Read.All.
Expand Group and select Group.Read.All.
Select Add permissions.
-
Go to API permissions > +Add a permission > APIs my organization uses. Search and select Microsoft Graph. The Microsoft Graph window is displayed. Select Delegated permissions.
Expand Group and select Group.Read.All.
Select Add permissions.
Go to the Overview page and make note of the Application (client) ID and the Directory (tenant) ID.
-
The noted values will be used during the installation of Jet Hub.
Install Jet Hub or JetService Tier
To install the platform-enabled Jet Service Tier or Jet Hub with Microsoft Entra ID authentication, perform the following steps:
Note: The instructions to configure Jet using only Microsoft Entra ID authentication are covered.
Register Your License
To register your organization's license, perform the following steps:
When you first start the Jet Setup program, you will be asked to enter your product activation code. Enter the Platform specific activation code sent via email.
Select the components you want to install and select Next. The Authentication page is displayed.
On the Authentication page, select Microsoft Entra ID > Next. The Platform Authentication page is displayed.
Select sign into my account and verify your account is in the proper organization.
Enter your app registration details (Tenant ID, Client ID, Client Secret) that you have noted while configuring Microsoft Entra ID) and select Next. The Register your on-premise license is displayed.
-
Select Register license to add insightsoftware’s product API to your company. The insightsoftware platform is displayed.
Note: Do not close the Register your on-premise license window. This page is required while configuring settings.
Register Service and Grant Permissions
To register service and grant permissions, perform the following steps
-
On the insightsoftware platform, on the Service to service page, select Register Service. The Register service window is displayed.
Add the required information:
Name: Enter a name of the service
Tenant ID: Enter Tenant ID that you have noted while configuring Microsoft Entra ID.
Application ID: Enter Application ID or Client ID that you have noted while configuring Microsoft Entra ID.
Then select Add Platform API to Azure Tenant. The Permissions requested page is displayed.
Select Accept.
-
Sign in to Azure portal and grant the following permissions:
Select +Add a permission > APIs my organization uses > Search and select Licensing Products API . TheLicensing Products API window is displayed.
- Select Delegated permissions > access_as_user.
Select +Add a permission > APIs my organization uses > Search and select Licensing Products API . TheLicensing Products API window is displayed. Select Application permissions > licenses.read.
Select Add permissions
At the bottom of the API Permissions page, select Grant admin consent for <DomainName> button. The confirmation dialog box is displayed.
Select Yes.
Important: Exit the insightsoftware Platform!
Configure Jet Hub or Jet Service Tier settings
To configure Jet Hub or Jet Service Tier settings, go to Register your on-premise license page that was displayed while registering license.
-
On the Register your on-premise license page, select Next. The Configure the Jet Service Tier Settings window is displayed.
Select Network Service, Add Rules to Windows Firewall, and select Next. The Configure the Jet Hub settings page is displayed.
-
Select any of the following and select Next.
Automatically enable all required IIS features (recommended)
I will manually enable the IIS features required by the Jet Hub
The Database configuration window is displayed.
-
If you want to sign in using SQL server instance, select Login using the service 'Run As' account and provide the required information.
If you want to sign in using database authentication, select Login using database Authentication and provide the required information.
Select Next.
Sign in to the Microsoft account as a Jet Services administrator and then select Next. The Start Installation page is displayed.
Select Install.