Setting up an Azure AD SSO application can be accomplished by following these steps:
Firstly, we will need to go through an app registration from the Azure portal. The steps to perform the registration can be found here
- When asked for the Redirect URL, you will use https://console.noibu.com/auth/login/redirect
- Once the application has been registered, navigate to the Manage tab under Authentication
- Under Implicit grant, select ID tokens.
If step 3 gets missed, you can also follow the steps at this link to enable the id token after the fact, instructions found here
All OpenID Connect applications will have a /.well-known/openid-configuration endpoint that will describe all the available configuration items. This URL from Azure is typically in the following format:
Replacing the Tenant ID with the one from your application in Azure. This is where you can find the Issuer URL that will be required to configure SSO in Noibu. The default issuer is https://login.microsoftonline.com/<tenant_id>/v2.0 but ensure to check the /.well-known/openid-configuration URL to ensure you are using the correct link.
Now that the app is registered in Azure AD, you can follow the steps to integrate.