ToolJet/docs/versioned_docs/version-2.61.0/user-authentication/sso/openid/azuread.md

---
id: azuread
title: AzureAD
---

# AzureAD Single Sign-on

:::info
To construct a Well Known URL refer this link :: https://docs.microsoft.com/en-us/azure/active-directory/develop/v2-protocols-oidc
:::

- Open your organization page and select `App registration`, and then select `New registration`.

<div style={{textAlign: 'left'}}>

<img className="screenshot-full" src="/img/sso/azuread/azure-app-reg-v2.gif" alt="Azure AD: SSO" width="700" />

</div>

- Enter name, select supported account type and enter the redirect URL which can be copied from `Manage SSO -> Open Id -> Redirect URL, click on register`.

<div style={{textAlign: 'left'}}>

<img className="screenshot-full" src="/img/sso/azuread/azure-3.png" alt="Azure AD: SSO" width="700"/>

</div>

- Application will be registered and will be able to view the details

- Configure Application (Client) ID as `client id` in Open Id configuration page.

<div style={{textAlign: 'left'}}>

<img className="screenshot-full" src="/img/sso/azuread/azure-4-cred.png" alt="Azure AD: SSO" width="700"/>

</div>

- Click on `Add certificate or secret` next to the **Client credentials**.

- Click on `+New Client Secret`

<div style={{textAlign: 'left'}}>

<img className="screenshot-full" src="/img/sso/azuread/azure8.png" alt="Azure AD: SSO" width="700"/>

</div>

- Give a description, set the expiry, and then click on the `Add` button.

<div style={{textAlign: 'left'}}>

<img className="screenshot-full" src="/img/sso/azuread/azure7.png" alt="Azure AD: SSO" width="700"/>

</div>

- Secret will be created, copy value and add it to the `client secret` section of Open Id SSO config.

- You can brand the redirect page using the branding and properties option.

<div style={{textAlign: 'left'}}>

<img className="screenshot-full" src="/img/sso/azuread/azure9.png" alt="Azure AD: SSO" width="700"/>

</div>