# National Cloud Platforms

{% hint style="info" %}
These settings should only be applied to the SCEPman App Service, not the Certificate Master. Please refer to [SCEPman Settings](/scepman-configuration/application-settings.md).
{% endhint %}

If you want to run SCEPman in a government / national cloud environment like GCC High, GCC DoD, or 21ViaNet, you have to alter some settings. If you run SCEPman in the standard Azure environment, just leave these settings empty to use the defaults. The following settings provide you the means to configure cloud-specific URLs and values if you are not using the standard Azure environment.

See also the [Logging configuration](/scepman-configuration/application-settings/logging.md#appconfig-loggingconfig-azureofferingdomain) if you want to log to a Log Analytics Workspace in a different cloud environment.

## AppConfig:AzureCloudConfig:AzureADEndpoint

*Linux: AppConfig\_\_AzureCloudConfig\_\_AzureADEndpoint*

**Value:** URL as string

**Description:**\
This is the AAD logon URL. It defaults to `https://login.microsoftonline.com`.

For GCC High, use `https://login.microsoftonline.us`. For 21Vianet, use `https://login.partner.microsoftonline.cn`.

## AppConfig:AzureCloudConfig:AzureADGraphEndpoint

*Linux: AppConfig\_\_AzureCloudConfig\_\_AzureADGraphEndpoint*

**Value:** URL as string

**Description:**\
This is the AAD Graph URL. It defaults to `https://graph.windows.net/`.

You may not need to configure this if you let SCEPman use only Microsoft Graph.

## AppConfig:AzureCloudConfig:AzureADGraphVersion

*Linux: AppConfig\_\_AzureCloudConfig\_\_AzureADGraphVersion*

**Value:** string

**Description:**\
The version of AAD Graph to use. It defaults to `1.6`.

## AppConfig:AzureCloudConfig:MSGraphEndpoint

*Linux: AppConfig\_\_AzureCloudConfig\_\_MSGraphEndpoint*

**Value:** URL as string

**Description:**\
The URL of Microsoft Graph. It defaults to `https://graph.microsoft.com`.

For GCC High, use `https://graph.microsoft.us`. For GCC DoD, use `https://dod-graph.microsoft.us`. For 21Vianet, use `https://microsoftgraph.chinacloudapi.cn`.

## AppConfig:AzureCloudConfig:KeyVaultEndpoint

*Linux: AppConfig\_\_AzureCloudConfig\_\_KeyVaultEndpoint*

**Value:** URL as string

**Description:**\
The URL of Azure Key Vaults. It defaults to `https://vault.azure.net`.

For GCC High, use `https://vault.usgovcloudapi.net`. For 21Vianet, use `https://vault.azure.cn`.

## AppConfig:AzureCloudConfig:ManagementEndpoint

*Linux: AppConfig\_\_AzureCloudConfig\_\_ManagementEndpoint*

**Value:** URL as string

**Description:**\
The URL of the Intune API. It defaults to `https://api.manage.microsoft.com`.

For GCC High, use `https://api.manage.microsoft.us`.

## AppConfig:AzureCloudConfig:IntuneAppId

*Linux: AppConfig\_\_AzureCloudConfig\_\_IntuneAppId*

**Value:** Guid as string

**Description:**\
The well-known Intune App ID. It defaults to `0000000a-0000-0000-c000-000000000000`.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.scepman.com/scepman-configuration/application-settings/dependencies-azure-services/national-cloud-platforms.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.