An application is needed in Azure AD for Mirror Gateway to function correctly. Below are the steps to create the application.
Resolution
Login to Azure with an Administrator account
Go to Enterprise applications
Click New application
Click Create your own application
In the Create your own application dialogue enter a name
Select the “Register an application to integrate with Azure AD (App you’re developing)” and click create
On the Register an application page
Verify that “Accounts in this organizational directory only (domain only – Single tenant)” option is selected
If you have received the URI from Mirror Gateway you can select web and copy and paste it here.
If you have not received the URI leave this section blank
Click Register
Back on the Enterprise applications | All applications page find the newly created application and click on it
On the <New Application name> | Overview page under “Getting Started” click assign users and groups. This should bring up the <New Application name> | Users and groups page
On the <New Application name> | Users and groups page
Click +Add user/group
Check the box next to the users that you want to add
Click Select Note: Only the users assigned in this step will be able to navigate to office through Mirror Gateway.
On the left hand menu click “Single sign-on” which takes you to the <New Application name> | Single sign-on page
Click “Go to application”
Click on endpoints
Copy the “Federation metadata document” and save as a local xml file
Next to “Application ID URI” click “Add an Application ID URI”
On the <New Application name> | Expose an API page click “Add”. This opens the Edit application ID URI page.
On the Edit application ID URI page click “Save”
Go to Enterprise applications | All applications page and find the newly created application and click on it
Copy the Application ID URI
Take the newly copied Application ID URI and the xml file created in step 11.3 and send them to support