# Microsoft Azure Blob Retention Policy
## Overview
To manage Azure Blob retention policies via WebAPI, you must obtain the following credentials:
1. **Tenant ID**
2. **Client ID**
3. **Client Secret**
4. **Access Token**
These values are required to authenticate and interact with Azure endpoints for retention policy operations.
***
## What Is a Tenant and How to Get a Tenant ID in Azure?
A tenant represents your organization in Microsoft cloud services.
To get your **Tenant ID**:
1. Log in to the [Azure portal](https://portal.azure.com/).
2. Go to **Entra ID > Properties**.
3. Copy the value from the **Directory ID** field — this is your Tenant ID.
To create a new tenant:
1. Select **Create a resource**.
2. Search for and select **Entra ID**.
3. Provide a name for your new directory.
4. A **Tenant ID** will be auto-generated.
Create New Tenant
***
## What Is a Client ID and How to Create It?
A **Client ID** (or Application ID) identifies your app to Azure AD.
To generate it:
1. Go to your Azure directory.
2. Click **App registrations > New registration**.
App Registration
3. Select the **Single-tenant** option and click **Register**.
Choose Single-Tenant
4. Go to **Authentication**, select app type as **Web**, and configure redirect URI.
Configure Authentication
Web Redirect URI
5. The app will now show an **Application ID** — this is your **Client ID**.
Client ID (Application ID)
***
## Add a Client Secret
To create a **Client Secret**:
1. Open your app under **App registrations**.
2. Go to **Certificates & secrets > New client secret**.
Create Client Secret
3. Enter a description, select a duration, and click **Add**.
4. Copy the **Client Secret ID** and **Value** — they are shown only once.
Client Secret Values
5. Go to **IAM** settings and assign roles to your app via **Add role assignment**.
Role Assignment
***
## Generate Access Token
To generate an **Access Token**, follow these steps:
### Step 1: Request Authorization Code
Send a GET request:
````http
GET https://login.microsoftonline.com/{tenant}/oauth2/v2.0/authorize?
client_id=YOUR_CLIENT_ID
&response_type=code
&redirect_uri=http%3A%2F%2Flocalhost%2Fmyapp%2F
&response_mode=query
&scope=openid%20offline_access%20https%3A%2F%2Fgraph.microsoft.com%2Fmail.read
&state=12345
&code_challenge=YOUR_CODE_CHALLENGE
&code_challenge_method=S256
# Microsoft Azure Blob Retention Policy
## Overview
To manage Azure Blob retention policies via WebAPI, you must obtain the following credentials:
1. **Tenant ID**
2. **Client ID**
3. **Client Secret**
4. **Access Token**
These values are required to authenticate and interact with Azure endpoints for retention policy operations.
---
## What Is a Tenant and How to Get a Tenant ID in Azure?
A tenant represents your organization in Microsoft cloud services.
To get your **Tenant ID**:
1. Log in to the [Azure portal](https://portal.azure.com/).
2. Go to **Entra ID > Properties**.
3. Copy the value from the **Directory ID** field — this is your Tenant ID.
To create a new tenant:
1. Select **Create a resource**.
2. Search for and select **Entra ID**.
3. Provide a name for your new directory.
4. A **Tenant ID** will be auto-generated.
Create New Tenant
---
## What Is a Client ID and How to Create It?
A **Client ID** (or Application ID) identifies your app to Azure AD.
To generate it:
1. Go to your Azure directory.
2. Click **App registrations > New registration**.
App Registration
3. Select the **Single-tenant** option and click **Register**.
Choose Single-Tenant
4. Go to **Authentication**, select app type as **Web**, and configure redirect URI.
Configure AuthenticationWeb Redirect URI
5. The app will now show an **Application ID** — this is your **Client ID**.
Client ID (Application ID)
---
## Add a Client Secret
To create a **Client Secret**:
1. Open your app under **App registrations**.
2. Go to **Certificates & secrets > New client secret**.
Create Client Secret
3. Enter a description, select a duration, and click **Add**.
4. Copy the **Client Secret ID** and **Value** — they are shown only once.
Client Secret Values
5. Go to **IAM** settings and assign roles to your app via **Add role assignment**.
Role Assignment
---
## Generate Access Token
To generate an **Access Token**, follow these steps:
### Step 1: Request Authorization Code
Send a GET request:
```http
GET https://login.microsoftonline.com/{tenant}/oauth2/v2.0/authorize?
client_id=YOUR_CLIENT_ID
&response_type=code
&redirect_uri=http%3A%2F%2Flocalhost%2Fmyapp%2F
&response_mode=query
&scope=openid%20offline_access%20https%3A%2F%2Fgraph.microsoft.com%2Fmail.read
&state=12345
&code_challenge=YOUR_CODE_CHALLENGE
&code_challenge_method=S256
````
---
# Agent Instructions: Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.
Perform an HTTP GET request on the current page URL with the `ask` query parameter:
```
GET https://knowledgebase.autorabit.com/product-guides/vault/configuring-vault/configure-backup-environment/microsoft-azure-blob-retention-policy.md?ask=
```
The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.
Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.
 (1).png)
 (1).png)
 (1).png)
.png)
.png)
.png)
.png)
.png)
.png)