Manually create App registrations for Cloud Attach

[heinejeppesen]

[Enter feedback here]

Hi,

The info on how to manually create the Azure AD app registration isn't correct/working and is incomplete. The docs says the API URI ID could be api:///.

This won't work - the / must be the actual app name, not just "a string." Otherwise it must be the Application (client) ID of the app - this is what the app registration ConfigMgr creates uses.

Everything under "Expose an API" is missing from the docs - won't work unless it's there.

So when doing the "Cloud Attach" process I would check "Upload" should occor. When done, the Upload would just not be enabled and trying to enable it, ConfigMgr would attempt to create a new app registraiton and use the one I specified. No errors or nothing - just don't work.

After fixing the API URI ID and adding the missing "Expose an API", it enabled Upload during setup.

Docs also states the "Directory.Read" must be both Delegated and Application. Doesn't seem right. The app ConfigMgr creates itself is just "Application".

So the "Delegated" one should probably not be there.

---

Document Details

⚠ Do not edit this section. It is required for docs.microsoft.com ➟ GitHub issue linking.

• ID: a2eb4acb-7311-79d3-3daa-6f27ea42aee7
• Version Independent ID: 123f2a5c-04c1-8184-05a4-689d9c591981
• Content: Enable Microsoft Endpoint Manager tenant attach - Configuration Manager
• Content Source: memdocs/configmgr/tenant-attach/device-sync-actions.md
• Product: configuration-manager
• Technology: configmgr-core
• GitHub Login: @mestew
• Microsoft Alias: mstewart