Create an Azure Service Account User

The following section explains how to create a global reader user that allows the MS Teams collector in Azure to access the MS Teams admin API and gather the data that will be sent to the dashboard server.

  1. Log in to portal.azure.com and select the Azure active directory icon

  2. Azure Active directory > Users

  3. + New user

  4. Fill out the following:

    image7

    • Username

    • Name

    • First Name

    • Last Name

    • Let Me create the password > Enter a password

    • Group = Company specific (left blank in lab)

    • Roles = Global Reader

Select Create

The user needs to log in once to ensure and make sure there are no password issues or authentication issues. This will ensure the following do not stop a successful connection:

  • Password is correct

  • Password has not expired

  • Not forcing user to change password on first login

  • No need to verify user password via email

  • No need to verify user password via text

  • No two factor authentication with passcode generator

  • User is not being directed to a on premise active directory

  • User can login successfully

  1. The user needs to log in once to change the password for the first time and verify Admin.

    Navigate to http://admin.microsoft.com/.

    Choose Use another account.

    image9

  2. Enter global reader account created.

image10

  1. Select Next and enter password

    image11

  2. Enter password and create a new password

    image12

    image13

    Don’t skip this otherwise you can’t use it in the collector.

    image14

  3. Once you have received a text with the code enter it into the box

    image15

    Next

    image16

    Next

    image17

    Done

  4. Successfully logged in

    image18