Was this documentation helpful? Share feedback
First Available: 7.1
Azure Active Directory authentication must be configured before dotnet monitor starts, it does not support being configured or changed at runtime.
| Name | Type | Required | Description |
|---|---|---|---|
| ClientId | string | true | The unique application (client) id assigned to the app registration in Azure Active Directory. |
| RequiredRole | string | true | The role required to be able to authenticate. |
| SwaggerScope | string | false | The API scope required by users to be able to interactively authenticate using the in-box Swagger UI. If not specified, users will not be able to interactively authenticate. |
| AppIdUri | uri | false | The App ID URI of the app registration. Defaults to api://{ClientId} if not specified. |
| Instance | uri | false | Specifies the Azure cloud instance users are signing in from. Can be either the Azure public cloud or one of the national clouds. Defaults to the Azure public cloud (https://login.microsoftonline.com). |
| TenantId | string | false | The tenant id of the Azure Active Directory tenant, or its tenant domain. Defaults to organizations. |
A minimal configuration requires setting just the ClientId and RequiredRole.
JSON
{
"Authentication": {
"AzureAd": {
"ClientId": "5eaf6ccc-e8c1-47c6-a68c-a6453172c655",
"RequiredRole": "Application.Access"
}
}
}Kubernetes ConfigMap
Authentication__AzureAd__ClientId: "5eaf6ccc-e8c1-47c6-a68c-a6453172c655"
Authentication__AzureAd__RequiredRole: "Application.Access"Kubernetes Environment Variables
- name: DotnetMonitor_Authentication__AzureAd__ClientId
value: "5eaf6ccc-e8c1-47c6-a68c-a6453172c655"
- name: DotnetMonitor_Authentication__AzureAd__RequiredRole
value: "Application.Access"