This article describes how to configure OpenID Connect with Microsoft Entra ID as an authentication method in Templafy.
Prerequisites
|
Configuration
- Go to the Account tab in the left-side menu of the Admin Center
- Go to the Authentication tab
- Click on Add authentication method
- Type in the name of the Authentication method id
- Type in the name of the Login button name
- Select Microsoft Entra ID in the drop-down
- Fill in the Domain hint (optional) and Microsoft Entra Tenant ID
- Configure Advanced Options (if necessary)
- Click Save
Authentication Parameters
Authentication Method Id
The Authentication method ID is a unique and non-editable value used to identify the authentication method itself. This is a required field and can be referenced as an installation parameter in Templafy Desktop deployment or distributed via Registry key. Using this id, users will not have to select an authentication method each time the Refresh Token is being renewed and the login shall succeed quietly without their interaction.
Login Button Name
This name will be shown to users when logging into Templafy, if multiple authentication methods are configured on the tenant. It is therefore imperative to give the button a meaningful and distinctive name to better guide users to the correct authentication method.
Domain Hint
Every Microsoft Entra ID Tenant can be connected with one or more DNS domains. Usually, the default domain format assigned by Microsoft is "mycompanydomain.onmicrosoft.com". More often than not, however, the primary domain is set to be the same as your email domain "mycompanydomain.com"
If you are not certain which domain to provide, you can always check for your primary domain in portal.azure.com > Microsoft Entra ID > Overview
NoteDomain hint should contain only one domain. If multiple domains are in use, add only the Primary domain from your AD as shown above. |
Microsoft Entra Tenant ID
Tenant ID is a globally unique identifier (GUID) that is different than your tenant name or domain. It can be found under portal.azure.com > Microsoft Entra ID > Overview
NoteAlternatively, you can look up your Tenant ID by inserting your primary domain here. |
Advanced options
You can restrict access to specified email domains with the Restricted domains setting or restrict access based on the Discriminator claim name setting.
Comments
Article is closed for comments.