Documentation
Demos
Support
Blog
Start Free Trial
Search results

Azure AD support for SSO authentication

Azure Active Directory (Azure AD) OAuth is a powerful tool for securing your Bold BI applications. This guide will walk you through the process of configuring Azure AD OAuth in your Bold BI site.

How to register the Bold BI application in Azure AD

This section explains how to perform Single Sign-On for users in Azure AD with the Bold BI application.

  1. Navigate to the Azure Portal and select Microsoft Entra ID.

  2. From the navigation, choose the App registrations and then select the New Registration option.

    Application page

  3. Fill in the following details in the form and click Register:

    • Application Name
    • Supported account types -> Accounts in any organizational directory (Any Azure AD directory - Multitenant). If other Azure directory users don’t need to login, select Single tenant.
    • Redirect URI -> https://{yourdomain}/signin-oauth

    Add Application

  4. Once the application is created, navigate to Certificates & secrets and select New client secret option to create a new secret. Once the client secret is created, please copy the secret from the Value column.

    Client Secret.

  5. Get client ID value from the registered application overview page.

    Client ID.

Enable Azure AD support for authentication in Bold BI

Configure the settings in Bold BI, as shown in the following screenshot, to enable authentication using Azure AD.

Azure AD settings

The fields that need to be saved in Bold BI to enable Azure AD for authentication are explained as follows.

Provider Name It represents the name of the authentication provider to be displayed in the login page.
Provider Logo It represents the logo of the authentication provider to be displayed in the login .
Authorization Endpoint It should be in the format https://login.microsoftonline.com/organizations/oauth2/v2.0/authorize
Token Endpoint Method POST
Token Endpoint It should be in the format https://login.microsoftonline.com/organizations/oauth2/v2.0/token
User Information Endpoint Method POST
User Information Endpoint It should be in the format https://graph.microsoft.com/oidc/userinfo
Client ID The Client ID you get after registered the Bold BI application in Azure AD website.
Client Secret The Client Secret you get after registered the Bold BI application in Azure AD website.
Scopes openid, profile, email
Logout Endpoint It is the endpoint in the Azure AD website that signs the user out.
Email This must be the field name in which email will be present when deserializing the token.

Login with Azure AD

  1. Please go to the login page and select the Azure AD option to log in.

    Azure AD Login Option

  2. Please enter your username and password in the Azure AD SSO login screen and proceed to sign in.

  3. By following these steps, you can successfully configure Azure AD OAuth in Bold BI. This will enhance the security of your Bold BI applications and provide a seamless login experience for your users.

Previous
Next