Articles in this section

External authentication with Microsoft Azure

Avatar
administratif
  • Updated
Follow

Presentation

Microsoft Azure AD single sign-on (SSO), after being added and configured in the facility's tenant, allows its users to log in with their Microsoft credentials. The facility selects which users can use single sign-on to log into Compilatio. The Compilatio Magister account is created automatically the first time the user logs in with their Microsoft account information (first name, last name, email address).

 

Features

SSO

 Yes
Types of authorized users All
Customization possible Yes, the institution selects the users who can use SSO

 

Prerequisites

Make sure you have the appropriate roles in Azure AD: you must be an application administrator or global administrator.

As a reminder, authentication with Microsoft Azure is limited to non-student faculty and staff.

 

Steps to implement authentication

  1. Log in to Microsoft Azure (You must be an administrator), go to Azure Active Directory tab Application registration then click on New application.azure1-en.png
  2. Fill in the form to register an application. In Redirection URL select Web and enter "https://app.compilatio.net/api/private/authentication/login/microsoft?group_id=id_of_group_sent_by_compilatio&service=anasim"azure2-en.png
  3. In the tab Authentication of the application, check Access Tokens and ID Tokens in the part Implicit grant and hybrid flows.azure4-en.png
  4. In the tab Application Roles click on Create an application role and enter
    • Display name: for example "Compilatio user".
    • Authorized member types: users/groups
    • Value: CompilatioUserazure5-en.png
  5. In the tab Overview of the application, copy the Application ID and the Directory ID and send them to"support@compilatio.net".azure3-en.png

 

Registering users to SSO Compilatio

  1. In Azure Active Directory click on the tab Enterprise applications then click on the previously created application.
  2. In the tab Users and groups click on Add a user / group.azure6-en.png
  3. Select the users or groups you want to enroll in Compilatio SSO and select the previously created role.

 

---

Learn about other external authentication systems:

Return to the overview of external authentication systems :

Related articles