Create OIDC App Integration in Azure AD

  • Published on Apr 2, 2025
  • 1 minute(s) read
Prev Next

Configure Azure App Integration

  1. Log in to the Microsoft Azure Portal.

  2. Go to Microsoft Entra ID.

  3. Click Add > Enterprise application.

  4. Select Create your own application and add a name.

  5. Copy the Application (client) ID value, it will be added later on ZPE Cloud.

  6. Select Certificates & secrets.

  7. Add a new Client Secret and copy its value, it will be used to register on ZPE Cloud.

  8. Go back to Overview, click Endpoints and copy the “OpenID Connect metadata document“ up to the “/v2.0”, this will be the issuer URL that is needed to be configured in ZPE Cloud.

Configure Azure with ZPE CLOUD SSO

  1. Log in to ZPE Cloud as administrator.

  2. Go to Settings :: SSO :: Identity providers.

  3. Click Add to add a new SSO provider.

  4. Select Protocol as OIDC and Provider as Azure.

  5. Enter the information from Add Okta App Integration.
     

    1. Enter the name that was used in the Reply URL on Azure, the recommended value is Azure.

    2. Enter a description for the SSO.

    3. Enter the client ID and client secret. You can obtain the client ID and client secret from the identity provider. These are defined during configuring Azure App integration.

    4. Enter the Provider URL that identifies your OIDC identity provider.

Post configuration on Azure

On ZPE Cloud, SSO table, you can view the ACS URL for the OIDC configuration that was just created.

  1. Click and copy the URL.

  2. Log in to the Azure admin page.

  3. Go to Authentication > + Add a platform and select web under Configure platforms.

  4. Enter the ACS URL to the redirect URL and append “/callback“ to the end.

  5. Go back to overview and click Managed application in local directory.

  6. Go to Users and Groups and add the users to whom you want to grant the access.

  7. Go to Single sign-on and select Linked.

  8. Paste the ACS URL.