BlackBerry Spark Communications Services Guide

Azure Active Directory for User Management

The Support libraries include code that you can use for user management with the Microsoft Graph API to for Azure Active Directory contact management. The Microsoft Graph API lets you list and manage your users' Azure Active Directory contacts.

In Microsoft Azure, each access token must be used for a specific resource. Your application has to authenticate against Azure with a scope containing all Microsoft Graph API permissions to access Active Directory user data. It cannot reuse the access token granted for the SDK.

Mapping Active Directory Contacts

The Microsoft Graph API allows your application to access the data of Active Directory users, and to write custom application data for each user using custom extensions. In the example applications, a Spark Communications Services identity's regId is automatically associated with the user's data in Azure Active Directory. This allows your application to easily integrate against a corporate directory to facilitate user lookup, and start secure chat, voice, and video communications using the SDK. Your application can also leverage Microsoft Graph API to manage a contact list by utilizing user groups or other criteria.

Configure the Microsoft Graph API

From the Microsoft Application Registration Portal, access the Microsoft Graph Permissions section and add the following permissions.

Permission Description
User.ReadWrite This is required to view the local users data and write the Spark Communications regId to their user entry in Active Directory.
User.ReadBasic.All This is required to view all users in Active Directory.
Azure Portal

Examples

The SDK example applications can be configured to use the Microsoft Graph API to access Azure Active Directory for User Management.