AI Portal Self Install

1. Create an Azure Subscription

Follow these steps to create a Subscription in Azure: **https://how.dev/answers/how-to-create-a-microsoft-azure-subscription**

All AI Portal resources will be deployed into this Subscription.

For our resources, we require Paid of Pay-as-you-go Azure subscriptions. Due to resource availability Ai Portal will not work in Sponsored or credit-based subscriptions.

2. Register Resource Providers

Within your Azure Subscription, navigate to: Subscription → Settings → Resource Providers

Ensure that the following resources are registered within the subscription:

Resource Provider	Purpose
Microsoft.App	Application hosting (App Services)
Microsoft.CognitiveServices	AI/ML and language services
Microsoft.ContainerService	Kubernetes clusters (AKS)
Microsoft.Dashboard	Metrics Dashboard
Microsoft.DBforPostgreSQL	Database provisioning
Microsoft.Insights	Metrics Monitoring
Microsoft.KeyVault	Secret and credential management
Microsoft.ManagedIdentity	Identity and role-based access
Microsoft.Monitor	Workspace Monitoring
Microsoft.Network	Networking resources
Microsoft.OperationalInsights	Logging and monitoring
Microsoft.Storage	Storage account provisioning

3. Add an Azure app registration

3a. Register the AI Portal application in Azure AD:

Navigate to **App registrations → New registration**
Enter the name: Userfront AI Portal
Click Register

3b. Define App Roles:

Under Manage > App roles, create the following roles:

Display Name	Allowed Member Types	Value	Description
Userfront Admin	Users/Groups	userfront_admin	Userfront administrator with elevated permissions
Userfront Prompt Auditor	Users/Groups	userfront_prompt_auditor	Userfront user allowed to audit prompts
Userfront Default Access	Users/Groups	userfront_default_access	Userfront member with default permissions

3c. Limit Access to the Application:

Under **Enterprise applications → Userfront AI Portal → Manage → Properties**
Select “Yes” under “Assignment required?”
Click Save