Deltek PIM 26.0 Online Help

Create a Microsoft Entra ID Application

You add and configure the PIM application in a Microsoft Entra ID tenant (formerly Azure Active Directory).

Pre-requisites: You must already have a Microsoft Entra ID tenant set up and configured for your users.

To create a Microsoft Entra ID application for PIM:

  1. In a browser, navigate to https://entra.microsoft.com/ and sign in to the Microsoft Entra admin center.
  2. Under the Azure Services heading, click Microsoft Entra ID.
  3. Under the Manage heading, click App registrations.
  4. On the App registrations screen, click New registration.
  5. On the Register an application screen, enter the following information:
    1. In the Name field, enter Deltek PIM.
    2. Under Supported account types, select the Accounts in this organizational directory only option.
    3. Under Redirect URI (Optional), select Web, and then enter your customer URL followed by the relative redirection endpoint: 
      /XWeb/Integrations/ExternalOAuthClientCallback.ashx

      Example: 

      https://deltek.pim.com/XWeb/Integrations/ExternalOAuthClientCallback.ashx
  6. Click Register.
    The application is created in Microsoft Entra ID, and the properties of the Deltek PIM application are displayed.
  7. To copy the tenant and app ID values, do the following:
    1. From App registrations in Microsoft Entra ID, select the PIM application.
    2. Copy the Directory (tenant) ID and Application (client) ID values to a text file. You will use these values when you configure single sign-on in the PIM application.
  8. To configure authentication, do the following:
    1. Under the Manage heading, click Authentication.
    2. On the Authentication screen, under Redirect URIs > Implicit grant and hybrid flows, select the ID tokens (used for implicit and hybrid flows) check box.
    3. Under Redirect URIs > Supported account types, confirm that Accounts in this organizational directory only is selected.
    4. Under Advanced settings > Allow public client flows, select No for the Enable the following mobile and desktop flows setting.
    5. Click Save.
  9. To create a client secret, do the following:
    Client secret keys provide additional security, but they are not required for single sign-on to work in PIM. If you create a client secret with an expiration, set a reminder to update the client secret before it expires. When you update the client secret, you must also update it in the PIM application.
    1. From the App registrations menu, click Certificates & secrets.
    2. Click Client secrets > New client secret.
    3. Enter a description, such as Deltek PIM Microsoft Entra ID, and then select an expiration time.
    4. Click Add.
    5. Copy the client secret value. You will need this value when you configure PIM.

Post-requisites: You can now Configure PIM for Single Sign-On using the app details that you copied.