Microsoft Azure Active Directory is now called Microsoft Entra ID
Microsoft login (Entra ID Single Sign-On) enables your employees to access Nepton with the standard credentials and security practices of your organization. This guidance describes the necessary configuration steps to enable Microsoft SSO for Nepton in Entra ID. Intended audience is Microsoft Entra ID or Microsoft 365 administrator of your organisation.
Requirements
Your organization needs to have active Microsoft 365 or Entra ID subscription. Your organization needs to have at least one free Entra ID application registration slot available. All Microsoft 365 customers received at least 10 application registration slots on initial subscription start.
Get two values from Entra ID and save them to Nepton
Get two values Application (client) ID and Secret value from Entra ID. Instructions here
Go to Employees > Administration
Go to the section Single sign-on (SSO) > Microsoft Login
Fill in the values and save the changes
- Name: The text that appears on the login button (for example: Microsoft login)
- Application (client) Id: Text from Entra ID
- Secret value: Text from Entra ID
- Guidance about fetching these text values can be seen here
- Please take care to use the secret value and not the secret ID
ATTENTION: If secret value has an expiration date, you must before occurrence of such expiration date always create in Entra ID a new secret value and update this secret value to Nepton. This is required for uninterrupted use of the Microsoft logins in Nepton service.
Changing the secret value
If Microsoft login has already been used and you want to change the secret value (for example, when the secret value expires), change the new secret value in the Microsoft Entra ID line by pressing "Edit" button, enter the new secret value instead of the old one and press "Save".
Grant permissions and test
On first Microsoft login, you might need to authorize the SSO app on behalf of the whole organization. If this occurs, a separate popup will be presented to user who first logs in from your organization.
If user is Entra ID administrator, the popup will look like below, and user should accept. Do not press cancel.
If user is normal user, she will be presented with a different popup allowing her to request permission from Entra ID administrator. In this case it’s advisable to separately & directly contact Entra ID administrator of your organization.
Microsoft login will not work before above consent and permissions are granted.