Migrating LDM to Azure

Migrating LDM to Azure

This guide explains how to migrate Lenovo Device Manager (LDM) to Microsoft Azure using Microsoft Entra ID. This process involves setting up a new app in Azure, collecting necessary configuration data, and updating the authentication settings in LDM. Please note that this feature is available exclusively to Organization Admins.

Access the Organization Account in LDM

  1. Click the down-arrow next to your Profile.
  2. Select Organization Account
  3. Go to the Authentication tab.
  4. Click Change provider and follow the on-screen instructions. 




Register the Application in Microsoft Azure

  1. Go to Microsoft Azure and log in.
  2. Select Manage Microsoft Entra ID
  3. Navigate to the App registrations page.
  4. Click New Registration to create a new app (client app).
The Redirect URL can be entered later when you receive this value in an email/LDM dialog.

Collect Required Data

  1. After creating the new application, collect the required data to update the organization's authentication type to Microsoft Entra ID.
  2. Copy the Application (client) ID from the Azure Portal Application Overview page.

Generate Client Secret

  1. Navigate to the Certificates & Secrets page.
  2. Create a new Client Secret and copy the secret value on that page (please note that the secret value must be copied, not the secret ID).

Obtain OpenID Connect Metadata

  1. Navigate to Application Overview.
  2. Open the Endpoints tray. 
  3. Copy the OpenID Connect metadata document link.
  4. Open this link in a new browser tab and download the page info to your computer. This IDP Configuration file is required to change the organization authentication type to Microsoft Azure. 

Update Organization Authentication in LDM

  1. Enter Client ID and Client Secret, as shown below.
  2. Upload IDP Configuration file and click Next
  3. Copy the Redirect URL either from the LDM dialog box shown below or from the email you will receive shortly after completing the above step: 

Finalize Setup

  1. Navigate to Apps Registration and open your app page.
  2. Go to Authentication section.
  3. Click Add a platform and select Web.
  4. Enter the Redirect URL.
  5. Save changes. 


Once all steps are complete, the Azure AD setup is finished. Your organization can now use Microsoft Entra ID for authentication.

    • Related Articles

    • Creating a Lenovo Device Manager Organization

      Organization Setup When your organization's portal is created, a single administrative account will be created. The IT Owner (Org Admin) specified to Lenovo at the time of sale will receive a Lenovo Device Manager (LDM) e-mail indicating that he or ...

    • Customizing LDM Portal

      Lenovo Device Manager (LDM) offers the customization capability to administrators to select specific devices, OS, and device management features within a specific organization's LDM instance. For new organization(s), LDM supports all devices and ...

    • Using Managed Organizations in Lenovo Device Manager

      Lenovo Device Manager enables organizations to be converted to Managed Service Providers (MSPs). MSP provides parent/child organization management support where Organization Admins can manage their own organization and other organizations. These ...

    • Managing Users in an Organization

      You can manage users in your organization by adding, updating, or deleting user accounts. Users can be added individually or in bulk using a properly formatted CSV file. Inviting Users to the Organization To add users to your organization, navigate ...

    • Adding Windows Devices

      Lenovo Device Manager supports an automated process that simplifies the onboarding of Windows devices. Users can easily download the .zip file package with the necessary files and apply to the devices. Any Lenovo Windows device can be automatically ...