Azure Active Directory Integration: Setting up a link between AAD and BQIgnite.com
The user information in BQIginite.com, for use across our various applications, can be brought into the platform in the following ways:
This article explains how to add and configure the BQ Ignite application in your Azure Active Directory.
Add the BQ Ignite application
Adding the
BrandQuantum application into your Azure Active Directory allows the integration between our platform (BQ Ignite) and your Azure Active Directory. This results in your end-users using their Azure Active Directory credentials to automatically authenticate as users in our platform. Additionally, their active directory user information
may be utilised to populate their details in (for example) the signature metadata for
BrandMail.
Step 1: Log into your Azure Active Directory
Step 2: Access Admin Application
Once you have logged into Office Portal go to the Admin application on the end of the application list.
Step 3: Show All Applications
Under the Microsoft 365 Admin Centers choose Show All.
Step 4: Select Azure Active Directory
Under the Admin Centers choose Azure Active Directory.
Step 5: Select your AAD
The Azure Active Directory Admin Center browser window will open. Click the Azure Active Directory link in the new window.
Step 6: Select App registrations
Once the Azure Active Directory menu is displayed, click App registrations.
Step 7: New registration
Click the New Registration button to add a new application to your Azure Active Directory.
Complete the application information.
Tip: You need only add a single application into Azure Active Directory for all BrandQuantum applications.
We recommend calling the app: BQIgnite Platform.
Click the Register button.
Application Registration DetailConfiguring the BQ Ignite application
Step 9: Obtain application details
Once the application has registered, you will be redirected to the application details.

NB: You will need to send us the GUID for the Application (Client) ID and the Directory (Tenant) ID.
Please copy and paste into a TXT file the following Global Unique ID, to share with your BrandQuantum technical contact (make use of the copy to clipboard function, to avoid errors):
- Application (client) ID
- Directory (tenant) ID
Step 10: Obtain application secret
Under client secrets, please click New client secret and give it a valid description and set it either to 1 year, 2 years or Never depending on when you want the secret to expire. Click Add once completed and the secret will be added to the application.

This secret needs to be supplied to us as well please.
Click API permissions. In the permissions which have been granted please make sure that Group.Read.All, and User.Read.All have been granted.
This will allow us to retrieve users for a particular group and import their information into our backend to maintain user licensing and prevent any finger capturing issues. This will also grant users the ability to use their Azure Active Directory credentials and log into our platform using SSO.
Step 12: Expose an API
Expose an API
Related Articles
Execute Azure Active Directory Sync
How to immediately execute an Azure Active Directory job Once your Azure Active Directory Group links have been set up, they will automatically synchronize at the predefined period intervals (the default is 480min, or every 8 hours). Sometimes, ...
BQIgnite | User Reports Available
User Reports The following reports are available to Administrators: Name Detail Fields Parameters Users Report This report provides you with a full list of users in the system, whether active or not active, as well as the date on which the user was ...
Grant AAD permission to use Microsoft credentials for BQIgnite platform authentication
How to grant AAD permission to use Microsoft credentials for BQIgnite platform authentication If you would like to access the BQIgnite admin console using Microsoft authentication, follow these steps to enable AAD permission to use your Microsoft ...
How to Force a User Sync
How do you force a user sync? There are many times when you may want to perform a forced user sync. These could include: You have made changes to the signature metadata and you would like the user to receive these before the normal sync cycle ...
Access the BQIgnite Admin Console
Before getting started, please ensure that you have sufficient permissions, either as a User Administrator, Toolbar Administrator or user (if you are just logging in to update your email signature information). Your organization may be set-up in one ...