Azure AD
This guide shows how to set-up Azure AD identity provider with Aidbox
This guide explains how to set-up Azure AD identity provider in Aidbox with a symmetric authentication mechanism. If you are looking for asymmetric (certificate-based one), please, follow Azure AD with certificate authentication guide.
- Find App Registration in search bar
- Click New Registration
- Fill form. For Redirect URI choose
webas a platform and inputhttps://<box-url>/auth/callback/azure
- Click Certificates & secrets > New client secret and create a new secret. Save
Valuefor next step
- Open REST console in Aidbox UI and create
IdentityProvider
POST /IdentityProvider
content-type: text/yaml
accept: text/yaml
scopes:
- profile
- openid
system: azure
userinfo_endpoint: <your userinfo endpoint>
authorize_endpoint: <your authorization endpoint>
token_endpoint: <your token endpoint>
client:
id: <your application (client) id>
secret: <your secret value from previous step>
resourceType: IdentityProvider
title: Azure AD
active: true
id: azure
You can find application (client) id on App Overview page
and your endpoints by clicking on Endpoints and visiting
OpenID Connect metadata document
Go to your Aidbox base URL. You will be redirected to the log in page where you should now see
Sign in with Azure AD button. Press this button and log in with Azure AD user. This user will be logged in to Aidbox Console but he won’t have any permissions. Read more in Access Control Section about permissions.Last modified 19d ago