Skip to main content

Microsoft EntraID

Configuring Microsoft EntraID as an OpenID Connect

In this section, we will show you how to provide Microsoft EntraID as an option on your cidaas login page. After configuring Microsoft EntraID as a Open ID in cidaas, you will get a new option called

  • Microsoft EntraID on the login page.
  • Microsoft EntraID on the registration page.

Request permissions that require admin approval

Learn how to handle permissions and request admin consent for application permissions in your code.

On your login page.

social-login-provider-display-page

The overall process in a nutshell, would be:

  1. On the Microsoft EntraID console: Register Application to get client id, secret and endpoints.
  2. On the cidaas admin portal: Add the Microsoft EntraID client id, client secret, and endpoints in cidaas application and select the appropriate cidaas applications for which you want to enable Microsoft EntraID.
  3. On the cidaas admin portal: Select Microsoft EntraID as a custom provider.

We'll guide you through the process steps — it's pretty easy.

  1. Login to your Microsoft admin console and click on the App registration.

  2. Select New Registration > Enter the details and click on Register.

    Note: The provider name in the Redirect url must be the same as cidaas custom Oauth and OpenID connect. Eg: Here it is myprovider.

    microsoft-entra-id-new-app

  3. (obsolete in new entraID setup) Click on Authentication, and under Implicit grant and hybrid flows select Access Tokens option and click on the save button.

  4. Click on Certificates and Secrets > *New client Secret >Add the desired name and time duration, and click on the Add button.

  5. Navigate to the overview and copy the client ID and secret.

    microsoft-entra-id-certificates-and-secrets

  6. Click on the Endpoints and copy the OpenId Connect metadata document endpoint.

    microsoft-entra-id-endpoints

  7. Let's move to the cidaas setup section above.

  1. Now, navigate to the cidaas Admin dashboard -> Settings -> Login Providers -> Custom OAuth2.0 and OpenID Connect > Add New Provider.

  2. Select the OPENID_CONNECT from the standard type.

  3. Enter the details acquired from the Microsoft EntraID section.

    Note: The provider name in the Redirect url must be the same as cidaas custom Oauth and OpenID connect. Eg: Here it is myprovider.

  4. Add the scopes profile, openid, enter the userinfo, and save.

    microsoft-entra-id-app-details

  5. After you save, you can select the application you want Microsoft EntraID to use as an OpenID provider.

    opid-config-microsoft-entraid-app-mapping

    Now you have enabled the Microsoft EntraID as custom login provider.

  6. Go to Apps >App Settings > Navigate to your app > Click on the Edit icon.

  7. Scroll down to the Advance settings > Login providers, Under custom login providers, enter the EntraID and save.

  8. Under Flow Settings enable Register with Login Information.

    microsoft-entra-id-app-settings

  9. Microsoft EntraID is available as a OpenID provider for your application.

Note: Administrator can configure a single provider to more than one client

Reference Link how to configure other provider?

Need help implementing this?

Please contact us on our Developer Support Page.