Learn to set up and find the correct information to configure single sign-on for your Dotdigital account using Azure Active Directory.
Before you start
Things you need to know:
- This article is part of a process. Start with the article Set up Single Sign-On (SSO) for your account, and we will direct you to this article at the correct point in the process.
Step 1: Create a new app registration
To set up App Registration in Azure Active Directory:
- Log in to the Azure portal.
You must be in the Azure Active Directory tenant you want to connect to Dotdigital.
- In the search box, enter App registrations.
- From the results, select App registrations.
- Select +New Registration. This opens the app registration form.
- For Name, enter a name for your new registration.
Use a name that's easy to identify, such as Dotdigital. - For Supported account types, select Accounts in this organisational directory only.
- For Redirect URI, select + Add URI, enter
https://login-sso.dotdigital.com/Sso/Authenticate
. - Select Register.
Step 2: Configure the redirect URI
You must configure the redirect URI to send successful authentication attempts back to Dotdigital.
- From the App Registration overview, copy the Application (client) ID and save it for later.
- Under Essentials, select the Redirect URIs from the top-right.
- Under Redirect URIs, add a second entry and enter
https://login.dotdigital.com/Sso/Authenticate
. - For Implicit Grant and hybrid flows, select the Access tokens and ID tokens check boxes.
- Select Save.
Step 3: Create a client secret
Create a client secret so Dotdigital can use the Azure Active Directory to validate your users' login attempts
To create a client secret:
- From the side menu, select Certificates & secrets.
- Select +New client secret.
- On Add a client secret, for Description, enter a description for your secret.
Use a description that's easy to identify, such as Dotdigital.
- For Expires, choose an expiry period for your client secret.
Make a note of your chosen expiry period, then when your secret is due to expire, create a new one and send it to us so we can keep things running seamlessly for you.
- Select Add. You now see the client secret.
- Under Client secrets, copy the Value (Client secret) and save it for later. You won't see it again after you close the page.
Step 4: Find the well-known endpoint
- From the App Registration overview top menu, select Endpoints.
- Find OpenID Connect metadata document, copy the endpoint and save it for later.
Next steps
You now have all the information you need to set SSO up on your account.
- Go back to Set up Single Sign-On (SSO) for your account and complete the process.