This integration allows you to create Users and/or Agents from your Azure Active Directory User list, and also then enable single sign-on with Azure. To get this up and running, you need to register a new application in Azure. You can create a separate application for the import and single sign-on should you wish, but this guide will focus on registering one application for both.
To register a new application in Azure, browse to your Azure Active Directory page and select App Registrations > New Registration.
You should give your application a sensible name, for example, Halo User Import. You can also specify a redirect URI at this stage. As part of configuring this application you will need to add multiple redirect URI’s, so this can be ignored for now.
Now that an application has been registered, it must be configured so that it has the relevant permissions required by the integration. In your new application, go to the API Permissions tab to get started. You should see your list of current permissions will be listed, along with options to manage these. Select the option to add a new permission, and choose Microsoft Graph from the options available.
Next, apply the following permissions under "Delegated Permissions" and "Application Permissions". Click "Add Permissions" and then click the "Grant admin consent for ..." text.