This article explains step by step how to setup Azure SSO using 50skills. Before setting up Azure, make sure to let your customer success manager at 50skills know.
High level instructions
Step 1:
In Azure Create an Enterprise App and there inside, Single-Page Application
Step 2:
Enable the Microsoft Azure Single sign-on in your journeys Security section: https://journeys.50skills.app/settings/organization-security
A) Tenant ID for AD
B) Client ID (Application ID for the Enterprise App)
Step 3:
Add all users that should have access with SSO into that app
Step 4:
In Authentication you need to add the following Single-Page application Redirect URL.
https://journeys.50skills.app
Azure set-up instructions
Please note that the URI's shown in the image below are examples - for this case we only need to have https://journeys.50skills.app present
Step 5:
In the same window, you also need to select Access tokens and ID tokens under Implicit grant
Step 6:
Go to Token Configuration on the left side and add 3 optional claims with ID token type
verified_primary_email
verified_secondary_email
Step 7:
Now go to API Permissions and add 4 Delegated Microsoft Graph rights
openid
profile
User.Read
Step 8:
Check if User Settings looks the same as on the picture below (Enterprise applications)
After Azure configuration
When you have completed the configuration in Azure, you simply go to your company security settings (https://journeys.50skills.app/settings/organization-security) and enable the SSO login method.
✨🚀 Done - you just configured Azure SSO and 50skills!
From now on, employees can log in by clicking the "Sign-in with SSO" option - without having to set a unique password for 50skills.
Any issues? Things that could be improved? Let our team know!