This step-by-step guide will show you how to configure Azure AD SSO authentication for your ACCELQ account, allowing your users to seamlessly sign in with their Azure AD credentials
Step 1
From the Tenant Admin portal in ACCELQ, select “Security and Authentication” from the left panel
Step 2
Select Open ID Connect in the dropdown as shown below
Step 3
Copy the end-point
Step 4
Open a new browser tab and navigate to your Azure portal (portal.azure.com). Sign in to portal.azure.com with your credentials.
Step 5
Click on the icon for “Azure Active Directory” in the home page.
Step 6
Select the “App registrations” from the left pane.
Step 7
Click on the “New Registration”.
Step 8
Give an appropriate name for the application.
Select “Accounts in any organizational directory (Single tenant)” in Supported Account Types.
Select Web in the platform dropdown and paste the copied endpoint URL from Step 3 in the redirect URL and hit “Register”.
Step 9
After successful registration, copy the Application (client) ID and paste it into “Client ID” field in the ACCELQ SSO window.
Step 10
Now in the Azure application, click “Certificates & Secrets” from the left panel and click on the “+ New Client Secret”
Step 11
Provide a description and select the required expiry time and click on the “Add” button
Step 12
In the Azure application, copy the Client Secret and Paste it into the “Client Secret” field in the ACCELQ admin panel.
Step-13
Go back to the overview and click Endpoints in the Azure application.
Step-14
Copy the link of the OpenID Connect Metadata Document as shown below
Now, open https://codebeautify.org/jsonviewer in a new tab and click URL as shown below. Paste the copied url and click Submit
Step 15
Coming back to ACCELQ SSO section, fill in the form fields as instructed below
Screenshot from Output of Codebeautify
Authorization URL: Copy the url with "/authorize" from first screenshot
Token URL: url with "/token"
Logout URL: url with "/logout"
JWKS URL: url with "/keys"
Issuer: Url under the key "issuer" in the JSON
Client Authentication: Select "Client secret sent as basic auth"
as Client ID and secret are already filled from above instructions, we can SAVE now.
Step 16
Now, on ACCELQ Tenant Admin, you can change any user's authentication to SSO authentication in Manage Users -> Edit User Profile -> Select SSO Authentication.
Comments
0 comments
Please sign in to leave a comment.