Rotating Microsoft Graph API Application Secrets

Overview

The Microsoft Graph API secret expires after a set duration.  The Graph API is used to sync users to TraitWare.  To ensure seamless sync service, the secret should be rotated before it expires.  If the secret has expired, the secret must be rotated to resume service.

Rotating the Graph API Secret is a quick and easy process.

Rotating the Secret

• Navigate to the Microsoft Azure Portal and sign in to your tenant. Under Azure Services, click on Entra ID

• Select App Registrations in the left menu.
• You many need to select All Applications to see the needed application.
• If your secret has expired you will see a red mark in the Certificates & secrets column.
• Select the Graph API application you previously set up to sync with TraitWare.

• Select Certificates & secrets.
• Delete the expired secret by clicking on the trash icon.

• Select New client secret

• Choose an expiration duration for the secret
• Select Save at the bottom.

• Copy the secret Value.  You will paste this in the TraitWare console in the next step.

• Log into your TraitWare Admin Console and select the Customer with the expired secret.
• Select User Sync from the left menu
• Paste the secret you copied in the previous step into the Client Secret field.
• Select Save Changes.

The Graph Sync should now resume.  Please allow up to 10 minutes for the sync results to appear in your console.