SSO Setup: Microsoft Azure Active Directory
  • 1 Minute to read
  • Dark
    Light

SSO Setup: Microsoft Azure Active Directory

  • Dark
    Light

Below is the process for setting up Azure Active Directory Single Sign On (SSO) for nVoq.Voice or nVoq.Mobile Voice.

 

  1. Agency adds the nVoq application to their Azure Active Directory tenant.
    1. Add the application to the Azure Active Directory tenant:
      1. Log in to https://portal.azure.com with an admin account in the desired tenant.
      2. Paste the appropriate "Add Application" URL (see below) into the web browser:
        • nVoq.Voice: 
          https://login.microsoftonline.com/common/oauth2/authorize?client_id=1c9e6b92-d0a9-4ed8-b135-3c24ee7042b5&nonce=1&scope=openid+offline_access+profile+User.Read+User.ReadBasic.All&response_type=id_token&prompt=admin_consent
        • nVoq.Mobile Voice: 
          https://login.microsoftonline.com/common/oauth2/authorize?client_id=2402923f-9924-4dbb-af8e-6d1587aba79c&nonce=1&scope=openid+offline_access+profile+User.Read+User.ReadBasic.All&response_type=id_token&prompt=admin_consent
      3. Complete the Microsoft "Add Application" instructions on the website.
      4. The browser will redirect to a non-existent http://localhost/ page. This is expected.
      5. Repeat for any additional Add Application links.
         
    2. Verify that the application(s) has been added to the Azure Active Directory tenant:
      1. Log in to https://portal.azure.com as an admin.
      2. Go to the main Azure Active Directory page.
      3. Go to the "Enterprise Applications" section of Azure Active Directory.
      4. Verify that the nVoq application(s) (nVoq.Voice and/or nVoq.Mobile Voice) appears in the list of approved applications.
         
  2. Agency sends initial list of SSO test usernames and the Azure Active Directory Tenant UUID to nVoq so that we can grant access to Agency users.
    1. All usernames must be in the format of username@company 
      nVoq currently has this limitation on the format of usernames, which will be revised (relaxed) in an upcoming release of nVoq products.
      1. username must be unique
      2. company must be the same value for all initial SSO test users
    2. To obtain the Azure Tenant UUID:
      1. Log in to https://portal.azure.com
      2. Select "Azure Active Directory"
      3. Select "Properties"
      4. Scroll down to the "Tenant ID" field where the tenant ID displays in the box
        SSO-Azure

 

  1. nVoq provisions the SSO rules and accounts given the above information.
     
  2. nVoq emails Agency to notify that login testing may begin using the application (nVoq.Voice and/or nVoq.Mobile Voice).
     

What's Next