Before you start
Things you need to know:
This article is part of a process. Start with the article Set up Single Sign-On (SSO) for your account (you might need to log in to Dotdigital to access this), and we will direct you to this article at the correct point in the process.
1. Create a new app registration
To set up App Registration in Azure Active Directory:
Log in to the Azure portal.
You must be in the Azure Active Directory tenant you want to connect to Dotdigital.
In the search box, enter App registrations.
From the results, select App registrations.
Select +New Registration. This opens the app registration form.
For Name, enter a name for your new registration.
Use a name that's easy to identify, such as Dotdigital.For Supported account types, select Accounts in this organisational directory only.
For Redirect URI, select + Add URI, enter
https://login-sso.dotdigital.com/Sso/Authenticate
.Select Register.
2. Configure the redirect URI
You must configure the redirect URI to send successful authentication attempts back to Dotdigital.
From the App Registration overview, copy the Application (client) ID and save it for later.
Under Essentials, select the Redirect URIs from the top-right.
Under Redirect URIs, add a second entry and enter
https://login.dotdigital.com/Sso/Authenticate
.For Implicit Grant and hybrid flows, select the Access tokens and ID tokens check boxes.
Select Save.
3. Create a client secret
Create a client secret so Dotdigital can use the Azure Active Directory to validate your users' login attempts.
To create a client secret:
From the side menu, select Certificates & secrets.
Select +New client secret.
On Add a client secret, for Description, enter a description for your secret.
Use a description that's easy to identify, such as Dotdigital.
For Expires, choose an expiry period for your client secret.
Make a note of your chosen expiry period, then when your secret is due to expire, create a new one and send it to us so we can keep things running seamlessly for you.
Select Add. You now see the client secret.
Under Client secrets, copy the Value (Client secret) and save it for later. You won't see it again after you close the page.
4. Find the well-known endpoint
From the App Registration overview top menu, select Endpoints.
Find OpenID Connect metadata document, copy the endpoint and save it for later.
Next steps
You now have all the information you need to set SSO up on your account.