SSO Setup: Microsoft Entra ID (formerly Azure AD)

Below is the process for setting up Microsoft Entra ID, formerly known as Azure Active Directory (Azure AD), Single Sign On (SSO) for nVoq Voice or Mobile Voice.

1. Agency adds the nVoq application to their Entra ID tenant.
   1. Add the application to the Entra ID (Azure AD) tenant:
      1. Log in to https://portal.azure.com with an admin account in the desired tenant.
      2. Paste the appropriate "Add Application" URL (see below) into the web browser:
         • nVoq.Voice: 
           

           https://login.microsoftonline.com/common/oauth2/authorize?client_id=1c9e6b92-d0a9-4ed8-b135-3c24ee7042b5&nonce=1&scope=openid+offline_access+profile+User.Read+User.ReadBasic.All&response_type=id_token&prompt=admin_consent

         • nVoq.Mobile Voice: 
           

           https://login.microsoftonline.com/common/oauth2/authorize?client_id=2402923f-9924-4dbb-af8e-6d1587aba79c&nonce=1&scope=openid+offline_access+profile+User.Read+User.ReadBasic.All&response_type=id_token&prompt=admin_consent
           

      3. Complete the Microsoft "Add Application" instructions on the website.
      4. The browser will redirect to a non-existent http://localhost/ page. This is expected.
      5. Repeat for any additional Add Application links.
          
   2. Verify that the application(s) has been added to the Entra ID (Azure AD) tenant:
      1. Log in to https://portal.azure.com as an admin.
      2. Go to the main Entra ID (Azure AD) page.
      3. Go to the "Enterprise Applications" section of Entra ID (Azure AD).
      4. Verify that the nVoq application(s) (nVoq Voice and/or nVoq Mobile Voice) appears in the list of approved applications.
          
2. Agency sends initial list of SSO test usernames and the Entra ID (Azure AD) Tenant UUID to nVoq so that we can grant access to Agency users.
   1. All usernames must be in the format of username@company 
      nVoq currently has this limitation on the format of usernames, which will be revised (relaxed) in an upcoming release of nVoq products.
      1. username must be unique
      2. company must be the same value for all initial SSO test users
   2. To obtain the Azure Tenant UUID:
      1. Log in to https://portal.azure.com
      2. Browse to "Microsoft Entra ID"
      3. Select "Properties"
      4. Scroll down to the Tenant ID section where your tenant ID is displayed in the box.
         

3. nVoq provisions the SSO rules and accounts given the above information.
    
4. nVoq emails Agency to notify that login testing may begin using the application (nVoq Voice and/or nVoq Mobile Voice).