Office 365 - Single Sign On - Azure AD Authentication with OpenID Connect

Office 365 subscription comes with Azure Active Directory, that you can use to integrate authentication with your applications.

This is a quick guide on how to configure applications to authenticate using Azure Active Directory.

1. Go to portal.azure.com and open Azure Active Directory from the left side menu.

2. Click on “App registrations”.

 

3. Click on “To view and manage your registrations for converged applications, please visit the Microsoft Application Console “.

 

4. In the Application Registration Portal this leads to, click on the “ ”. Give the application a name and unselect “ Guided setup ”. In this instance, we named it as FinanceCompanyConnect then Create.

 

5. Upon creation, take note of the Application ID:

 

6. Click on the Generate New Password button and take note of it e.g. tk96sYPjpgkNeoB2YdRxmPe

 

7. Click the “ Add Platform ” button and select Web from the pop-up that appears:

 

8. Leave checked “ Allow Implicit Flow ” and add-in details then “ Save” ;

Note: For SSO Sandbox o In Redirect URL, enter the following details;

• https://london-login.clearmatch.co/signin-oidc
  
• https://atlanta-login.clearmatch.co/signin-oidc
  
• https://athens-login.clearmatch.co/signin-oidc
  
• https://beijing-login.clearmatch.co/signin-oidc
  
• https://rio-login.clearmatch.co/signin-oidc
  
• https://sydney-login.clearmatch.co/signin-oidc
  
• https://uat2-login.clearmatch.co/signin-oidc
  
• https://demo-login.clearmatch.co/signin-oidc
  
• https://preprod-login.clearmatch.co/signin-oidc
  
• https://clearmatch.co/signin-oidc
  

 

Note: For SSO PROD Registration o In Redirect URL, enter the following details;

https://login.clearmatch.co/signin-oidc

9. Add permissions for “openid"

Getting Endpoints

1. Go to portal.azure.com and open Azure Active Directory from the left side menu · Click on “ App registrations ”  

2. Click on “Endpoints” on the top menu

3. Note the OAUTH 2.0 TOKEN ENDPOINT URL

4. Note the OAUTH 2.0 AUTHORIZATION ENDPOINT URL

Validate

To validate token endpoint, use the following link and replace xxx… with your token ID

 https://login.microsoftonline.com/xxx-xxxx-xxxx-xxxx/v2.0/.well-known/openid-configuration

• Related Articles

• Single sign on - possible issues

  Logging in with Fusion Account Details There may be some instances where you have entered your username and password in the Fusion login page: Then once the Sign In button is pressed, you see this error message on the screen: The reason for this is ...

• Single sign on - logging into Fusion with your active directory account

  1. Use this specific URLto log into Clearmatch Fusion NOTE: it is different to the default Fusion home page as it uses the provider which is what is setup in the section Link Active Directory to Clearmatch Fusion Account. 2. This will redirect to a ...

• Office 365 - Clearmatch catchall emails

  http://social.technet.microsoft.com/wiki/contents/articles/30462.catch-all-mailbox-office365.aspx How to set up catch all email address on office 365 In order to do this, we need to use a transport rule which imposes a couple of restrictions. This ...

• Office 365 - API setup

  1. Login to https://apps.dev.microsoft.com use admin account create app, note down Application Id, Application Secrets, Redirect URL. 2. Choose Native platform, Setup Microsoft Graph Permissions as below: Read mail in all mailboxes Read and write ...

• Single sign on - linking active directory to Clearmatch Fusion account

  1. Log in to the Azure portal with the user account details: 2. Select the Azure Active Directory menu option on the left hand side: 3. Look for the Users and groups widget and click anywhere on the widget itself to continue: 4. This will open the ...