-
Notifications
You must be signed in to change notification settings - Fork 153
Identity Provider Configuration: Microsoft Azure Active Directory(AD)
IDP Reference Resources
- Microsoft identity platform and OpenID Connect protocol
- OpenID Connect authentication with Azure Active Directory
- Add an OpenID Connect-based single sign-on application
- Secure your application by using OpenID Connect and Azure AD
The settings outline in this guide are a starting point reference of a known working Azure AD Enterprise Application Setup for OpenID Connect Clients for use with the OpenID Connect Generic plugin. As with all Identity Providers many other configuration options within the platform could effect how these settings work.
When setting up the plugin on the WordPress site most of the key client configuration can be found from the Azure AD OpenID Connect configuration endpoint.
Example:
https://login.microsoftonline.com/<tenant-id>/v2.0/.well-known/openid-configuration
This will provide all of the endpoints needed for configuring the plugin, as well as the supported claims that are the attributes to be used for matching & creating user accounts.
- Copy the Client ID and Client Secret from
- Enter the "Client ID" & "Client Secret Key" into the plugin settings screen.
- Enter in the "OpenID Scopes" with the recommended list of
email profile openid offline_access
. - Enter in all of the endpoints as found when viewing the client configuration endpoint URL.
Incomplete
With this setup you should now be able to login with your Azure AD instance as the IDP.