Enabling Graph API Permissions on Exisiting SSO App- Password Reset Flow

Enabling Graph API Permissions To Setup Password Reset Flow

REQUIREMENTS To allow the bot to perform automation for your end user, we need the following: • Your Azure Communication Services phone number (Optional) • Your Azure Communication Services Endpoint and Access Key (Optional) • Rezolve Azure app to have User Administrator Azure AD role and to enable certain Graph API(s). We will guide you through how to do this in Azure AD. GRANTING AZURE AD ROLE Role Required

1. User Administrator INSTRUCTIONS

2. Open your Azure Admin Portal

3. Depending on your home page, click on either the View button for Manage Azure Active Directory or Azure Active Directory icon

4. From the menu on the left select Roles and administrators

5. Click on the search box and search User Admin

6. From the list, click on User Administrator

7. Select + Add Assignment

8. Search for the Rezolve SSO app you previously created

9. Click on it and then click Add

10. Azure will return a success message when done.

ENABLE GRAPH API Graph API Permissions Required

1. User.ReadWrite.All
2. UserAuthenticationMethod.Read.All TYPE OF PERMISSIONS REQUIRED

1. Application permissions Instructions Part A

1. Navigate back to Azure Home page, by clicking Home

2. Depending on your home page, click on either the View button for Manage Azure Active Directory or Azure Active Directory icon

4. Click on App Registration

5. Search and Open the Rezolve SSO application you created

6. The App Overview page will open, look for API Permissions in the left hand side menu and click on it

7. Select Add a Permission on the main part of the page

10. Select Microsoft Graph Teams and click Register

This document contains proprietary information owned by Rezolve.ai and must not be5 d. istr ibuted outside without authorization. 11501 Dublin Blvd STE 200, Dublin, CA 94568 info@rezolve.ai | www.rezolve.ai 8. Click on the [Application/Delegated Permission] option 7. 8. 9. Type user.Re in the search box, select User.ReadWrite.All and click Add Permissions 10. Click Add a Permission > Microsoft Graph > Application permissions again 11. Type userau in the search box, this time select UserAuthenticationMethod.Read.All and click Add Permissions Here is an example: 9.

12. Close the Request API Permissions box so you are back at the Configure permissions screen
13. Select Grant admin consent for …
14. Click Yes to Grant admin consent confirmation
17. Confirm that the screen looks similar to below with your listed permissions, Admin Consent Req set to Yes and Granted for has a green check

Instructions Part B

1. Look for Certificates & secrets in the left hand side menu and select it

2. Then select New client secret on the main part of the page

3. Enter a description i.e. RezolveAIBot and click Add

5. Copy the Value and Secret ID and save them somewhere

6. Select Overview in the left hand side menu

7. Copy the Application (client) ID and save with Client Secret ID

8. Select Manifest in the left hand side menu

9. Click on Download

10. Send the Application (client) ID, Client Secret ID and the downloaded Manifest to Rezolve