# SSO Login - AzureAd
{% hint style="info" %}
HINT: If you have already integrated [azure-active-directory](https://kb.rezonate.io/troubleshooting-and-support/data-processing/azure-active-directory "mention") you can use the recently created Service Principal and just add the redirect URI.
{% endhint %}
### Register your app with Azure AD
To register your app with Azure AD, you can see Microsoft's [Quickstart: Register an application with the Microsoft identity platform](https://docs.microsoft.com/en-us/azure/active-directory/develop/quickstart-register-app).
During registration, configure the following settings:
Option
Setting
Supported account types
Accounts in this organizational directory only (Default Directory only - Single tenant)
Redirect URI
Select a Redirect URI type of Web, and enter your callback URL: https://auth.rezon.dev/login/callback
During this process, Microsoft generates an **Application (client) ID** for your application; you can find this on the app's **Overview** screen. Make a note of **this value.**
### Create a client's secret
In the recently created application, select Certificates & Secrets
Create a new Client secret, set it to the preferred amount of time (1 year preferred), and copy and save the recently created value.
### Assign Required Permissions
Click on API Permissions -> Add permission -> Microsoft Graph the following permissions (delegated):\
* Directory.Read.All
* User.Read.All
**Please send Rezonate back the following:**
1\. Microsoft Azure AD Domain
2\. Recently Created App Id
3\. Recently Created Secret Value
You can share this information by Opening a ticket with the title **"ADDING SSO TO MY TENANT"** in our [ticket system here](https://rezonate.atlassian.net/servicedesk/customer/portal/1)
