search

Sign In With Microsoft

hashtag
Prerequisites

Before enabling Microsoft SSO for an app you will need to have an Azure account with an active subscription, the account must also have permission to manage applications in Azure Active Directory. For further information see the prerequisites sectionarrow-up-right documented on Microsoft Azure.

hashtag
Azure Setup

  1. Register the App on Azure. Follow the steps documentedarrow-up-right to register for the app. Depending on your use case you will select one of the following for your sign-in audience: Employees Only. Select "Accounts in this organizational directory only", this will restrict Microsoft SSO to employees of a single organisation. A good option if the app is for company employees only. Multiple Customers & Their Employees. Select "Accounts in any organizational directory", this will allow Microsoft SSO to be used by any user that is part of an organisation that is registered with Azure Active Directory. Personal Accounts. Select "Personal Microsoft accounts", this will allow Microsoft SSO to be used by any user that has a Microsoft Account. Should only be used if you want any user to use Microsoft SSO.

  2. Add Redirect URI. Add the redirect URI as documented herearrow-up-right. You can find this URI in the Microsoft SSO setup form on Raven. The URI you will provide follows the format: https://<app-endpoint-domain>/app/sso/<sso-type>/<app-identity>/

  3. Add Credentials. The credentialsarrow-up-right you generate on Azure will provide a secret which will be used later when setting up Microsoft SSO on the app. Important: Copy the secret generated as this will be needed later.

  4. Enable Permissions. Go to API Permissions on Azure and add the following permissions: OpenID, email, and profile. You can remove any other default permissions.

  5. Branding & Properties. Navigate to Branding & Properties and input your: Logo: the icon of your app Home Page: The public website of your app Terms & Privacy: A link to your app terms & privacy, you can use the app's EULA which is automatically generated.

hashtag
App Setup

Once you have completed setting up SSO on Azure you are now ready to configure the app to handle Microsoft SSO.

  1. Setup. Open the App Editor for the app. Navigate to App Settings. Under the Sign In / Sign Up options select setup for Microsoft.

  2. Enter the Client ID. This is found in the Overview section of the App registration on Azure also called Application ID.

  3. Enter the Secret. This is found in the Certificates & Secrets section of the App registration on Azure.

  4. Enter Tenant Type. This will depend on your setup on Azure: Common, Organizations

  5. Save & Active. Click save on the setup form, and once closed toggle the Microsoft item on.

circle-info

Preview Mode. You can set the SSO setup as preview mode. This will only show the SSO option on versions deployed to preview. This is useful if you are testing the SSO setup ahead of releasing it to production.

PreviousSign In With GoogleNextAccount Settings

Last updated