Skip to main content

Adding Custom Active Directory App Registration

PhishingBox Support
  • Updated

This Article will detail the process of adding a custom active directory app registration.

 

1. Login to portal.azure.com

 

2. Go to azure active directory

Picture1.png

3. Click on app registrations

Picture2.png

4. Click new registration

Picture3.png

5. Fill out the form

Picture4.png

Name – can be anything

Supported account type – if you only want people in your organization select top option – single tenant. If you want to allow other organizations choose second from top – Multitenant.

Redirect URI

Web – https://<phish_portal_url/authorize_graph_oauth.php

Click register

Set API permissions

 

6. Click API permissions

Picture5.png

7. Add the below permissions and grant admin consent if required.

Picture6.png

8. Next grab the required parameters from the overview page of the application.

Picture7.png

Single and multi tenant apps must both provide the client ID. Single Tenant apps should also grab the tenant ID.

 

9. Next Click Certificates & secrets

Picture8.png

10. Click new client secret

Picture9.png

Fill anything for the description and set expiration to desired value. Once the secret expires you will have to update the app.

 

11. Click add.

Picture10.png

12. Copy the value that is shown. This is the client Secret which is used to register the app.

Picture11.png

Next go to - https://<portal_url> /account_settings_mail.php?act=mail

13. Click graph apps

Picture12.png

14. Click the button Add Graph App

Picture13.png

15. Fill this form with the appropriate information that was gathered earlier.

Picture14.png

NOTE: App name can be anything and is what you will select from the dropdown to use this application.

NOTE: Multi-tenant apps do not need to provide a tenant id.

 

16. When finished hit create app

Picture15.png

17. Your app should now be added.

Picture16.png

18. Next go to Inboxes

Picture17.png

19. Click create

Picture18.png

20. Set Connection Type to Graph OAuth. You will see the menu change.

Picture19.png

21. Select your app that was added in the dropdown and click authorize.

Picture20.png

22. You will be asked to sign into your Microsoft account. Sign in with the reporting inbox credentials.

Picture21.png

After signing in you will be redirected back to the phish portal and you will see the success message above if we were able to successfully add the inbox.

Picture22.png

Now the inbox is ready to use.

Related articles

Comments

0 comments

Please sign in to leave a comment.