First of all, it is necessary to register the application.
More information about it can be taken from here
Create a new Registration, name it.
Leave everything else by default except the redirect URI.
It should look like this:
Make sure that there is no extra trailing slash in the end of the URI, it can cause an error. It is possible to configure the second URI later.
These two URIs are required for administrative authentication and user login.
If SSO is not required for Admins, it is possible not to set the link.
The front-channel logout URL is optional.
As soon as done, please copy Tenant ID and Client ID into your LUCY app.
Settings → SSO Settings.
Copy Tenant ID and the Client ID from Azure to LUCY.
Create Client Secret in Azure's Clients and Secrets section, paste the value into LUCY as well.