Support for Microsoft Entra ID (formerly Azure AD) Single Sign-On

Management Console supports Active Directory (Microsoft Entra ID) Single Sign-On. The support for Single Sign-On using Microsoft Entra ID (formerly Azure AD) unburdens users from having to memorize credentials for different apps or reusing weak passwords, increasing the risk of a data breach.

About Microsoft Entra ID (formerly Active Directory) Single Sign-On

Single Sign-On is an authentication method that allows users to sign in using one set of credentials to multiple independent software systems.

Using SSO means a user doesn't have to sign in to every application they use. With SSO, users can access all needed applications without being required to authenticate using different credentials. For a brief introduction, see the Azure Active Directory Single Sign-On white paper.

Prepare Management Console for SSO

  1. Create an administrator account on Organization > Administrators with the user principal name of your Microsoft Entra ID user. You can create a separate user for this purpose as described here.

You should use user principal name only for SSO. All other email addresses associated with the Microsoft Entra ID user do not work for this purpose.

  1. There are no mandatory permissions for this administrative account to use SSO. You can grant this account only the permissions you need for other tasks, e.g., to use associated Azure storage account.

To log into Management Console using your Microsoft Entra ID (formerly Azure AD) credentials, click the Microsoft icon below the login and password fields and proceed with Microsoft Authentication using your Microsoft Entra ID account credentials.

| Top |

https://git.cloudberrylab.com/egor.m/doc-help-mbs.git