You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 3 Next »

not public yet


Introduction

The World Marrow Donor Association (WMDA) uses app registrations to allow machines to communicate securely with Microsoft resources. Instead of using a username and password, these connections use a Client ID and a Client Secret:

  • The Client ID is a constant identifier for the app.
  • The Client Secret is like a temporary password for the app used for machine-machine authentication. It expires after a certain period. Once expired, the connection stops working until a new secret is provided.

This method ensures secure access without exposing personal credentials and makes managing machine-to-service communication easier.

Managing your client secrets

To be able to manage client secrets of your organisation, user must:

  1. login to the https://portal.wmda.info/ using MFA (MFA user guide);
  2. have the "credential_management" role.


Only users with the appropriate role can manage client secrets. If you need access to manage client secrets for Data Manager (DM) and/or Search-Match-Connect (SMC), please contact WMDA support@wmda.info

With this role you can:

  • View the applications you own and their existing secrets.
  • Create new client secrets when needed.
  • Delete secrets that are no longer in use.

When creating a new secret, you must provide client secret name and expiration date (1 year maximum) for this secret:


When you create a new secret, copy and store it securely. After you refresh or return to this page, the full secret will no longer be visible - only the first three characters will remain. If you lose it, you'll need to generate a new one.

Once a new client secret is used, the old one should be removed to prevent unnecessary expiration reminders.


  • No labels