Microsoft ENTRA ID tab
This tab lists the security groups and application roles that are associated with the SNS application in Microsoft Entra ID.
Rule grid
| Security groups/Application roles |
This column lists the names of the security groups and application roles that were defined on the firewall. |
| UID |
This column lists the unique identifiers (UIDs) that describe each security group or application role.
A security group's UID must comply with the identity provider's requirements. For Microsoft Entra ID, the required format is a string consisting of five blocks of characters separated by dashes (-). The character block structure is as follows:
EXAMPLE
The UID of an application role must comply with the identity provider's requirements. EXAMPLES |
| Description |
The description is optional, but you are advised to add one for each security group or application role. |
Possible operations
Search bar
To search for a group or role, enter all or part of its name, UID and description: all security groups and/or application roles that contain the characters entered will be displayed.
Select all
This button is used to select all the entries in the grid, in order to apply a common action such as Delete.
Adding a security group or application role
- Click on Add, then select the type of item to add (Security group or Application role).
- Enter the Security group name or the Application role name.
- Enter the UID of the item according to the identity provider's requirements (see the description of UIDs in Rule grid).
- Add a description if necessary (recommended).
- Click on Apply to add the item.
Deleting a security group or application role
- Select the item to remove.
- Click on Remove.
WARNING
You will not be asked to confirm.
Edit
Select the item to be edited: you can then change its name and/or UID.
Check usage
Represented by the icon 
, this button indicates whether security groups or application roles are being used in the firewall configuration.
Importing security groups
Security groups can be imported through a CSV file generated by exporting groups from your Microsoft Entra ID tenant management space, or through a file that you created.
The structure of the header line should be as follows:
id,displayName,groupType,membershipType,source,mail,securityEnabled,mailEnabled,isAssignableToRole,onPremisesSyncEnabled
With the following values for each log line:
| id |
Specify the UID of the security group according to the identity provider's requirements (see the description of UIDs in Rule grid). |
| displayName | Enter the name (any text) of the security group. |
| groupType |
Specify that this is a security group by indicating (without quotation marks): "Security". |
| membershipType | Specify the value (without quotation marks): "Assigned". |
| source | Specify the value (without quotation marks): "Cloud". |
| Leave empty. | |
| securityEnabled | Specify the value (without quotation marks): "True". |
| mailEnabled | Specify the value (without quotation marks): "False". |
| isAssignableToRole | Specify the value (without quotation marks): "False". |
| onPremisesSyncEnabled | Leave empty. |
EXAMPLE
id,displayName,groupType,membershipType,source,mail,securityEnabled,mailEnabled,isAssignableToRole,onPremisesSyncEnabled
518afc56-071b-4c5b-ab34-ac78f07d6dac,SNS Authentication,Security,Assigned,Cloud,,True,False,False,
Configure auth.
This shortcut provides direct access to the Authentication module, to configure the OIDC/Microsoft Entra ID method.
Interactive features
Some operations listed in the taskbar can be performed by right-clicking on the user/group grid (CN grid):
- Add an item,
- Delete the selected item,
- Edit the selected item,
- Check usage of the selected item.