> For the complete documentation index, see [llms.txt](https://kb.rezonate.io/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://kb.rezonate.io/troubleshooting-and-support/sso-integrations/sso-login-azuread.md).

# SSO Login - AzureAd

{% hint style="info" %}
HINT: If you have already integrated [Azure Active Directory](/troubleshooting-and-support/data-processing/azure-active-directory.md) you can use the recently created Service Principal and just add the redirect URI.
{% endhint %}

### Register your app with Azure AD

To register your app with Azure AD, you can see Microsoft's [Quickstart: Register an application with the Microsoft identity platform](https://docs.microsoft.com/en-us/azure/active-directory/develop/quickstart-register-app). 

During registration, configure the following settings:

<table><thead><tr><th width="298">Option</th><th>Setting</th></tr></thead><tbody><tr><td><strong>Supported account types</strong></td><td>Accounts in this organizational directory only (Default Directory only - Single tenant)</td></tr><tr><td><strong>Redirect URI</strong></td><td>Select a Redirect URI type of <strong>Web</strong>, and enter your callback URL: https://auth.rezon.dev/login/callback</td></tr></tbody></table>

&#x20;During this process, Microsoft generates an **Application (client) ID** for your application; you can find this on the app's **Overview** screen. Make a note of **this value.**

![](https://rezonate.zendesk.com/hc/article_attachments/11291165388701) &#x20;

### Create a client's secret

In the recently created application, select Certificates & Secrets

![](https://rezonate.zendesk.com/hc/article_attachments/11291171388189)

Create a new Client secret, set it to the preferred amount of time (1 year preferred), and copy and save the recently created value.

![](https://rezonate.zendesk.com/hc/article_attachments/11291195151133)

### Assign Required Permissions

Click on API Permissions ->  Add permission -> Microsoft Graph the following permissions (delegated):\
![](/files/viNiUkBwfh86EFkIokyG)

* Directory.Read.All
* User.Read.All

<figure><img src="/files/qO5jglW8tujnpnZqcpne" alt=""><figcaption></figcaption></figure>

&#x20;

**Please send Rezonate back the following:**

1\. Microsoft Azure AD Domain

2\. Recently Created App Id

3\. Recently Created Secret Value

You can share this information by Opening a ticket with the title **"ADDING SSO TO MY TENANT"** in our [ticket system here](https://rezonate.atlassian.net/servicedesk/customer/portal/1)

<br>


---

# Agent Instructions
This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com.

## Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter, and the optional `goal` query parameter:

```
GET https://kb.rezonate.io/troubleshooting-and-support/sso-integrations/sso-login-azuread.md?ask=<question>&goal=<endgoal>
```

`ask` is the immediate question: it should be specific, self-contained, and written in natural language.
`goal` is optional and describes the broader end goal you are ultimately trying to accomplish on behalf of the user. GitBook uses it to tailor the answer towards what is most useful for that goal.

The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.