Info | ||
---|---|---|
| ||
If you are using Azure AD, you should consider using our pre-defined Azure marketplace app when configuring SSO. |
Info |
---|
This page describes how to configure your Azure AD to support Single SignOn to our Talent Platform using OpenID Connect (OIDC). |
Our identity platform, Talentech ID, supports Single SignOn via OpenID Connect. This guide describes how this can be configured in your Azure AD. To get started, you need to contact us in order to configure your system for Single SignOn. You will then get a URL from us to enter in your Azure AD configuration. Then you need to provide us the ClientId and endpoint URL before you are ready to go.
Step by step
1. Create a new Azure AD App registration
Open the Azure portal and navigate to your Azure Active Directory (1) and click New Registration (2).
...
Navigate to "Authentication" (1) and tick the checkbox "ID Tokens" (2)
2. Send us your ClientID and metadata URL
Send us the ClientID and URL to the OpenID Connect metadata document so we can add this on our side of the setup.
3. Optional: Admin consent for all users
We recommend that you give admin consent for all your users signing in to Talentech ID.
If you do not do this, every user will be asked if they would like to allow Talentech ID to read their basic information when signing in for the first time.
If the user does not give their consent they will not be signed in.
...
Then navigate to "Permissions" and click "Grant admin consent for.."
4. Optional: Whitelist email addresses
Talentech ID is sending email for password resets and account activations. If you have problems receiving these emails, you should consider whitelisting our email addresses and IP addresses.
Frequently asked questions
...