Complete the Azure AD configuration
This page describes how to complete the Azure AD configuration by specifying the redirect URL.
Prerequisites
-
Azure AD is configured as described in Prepare the Azure AD configuration and Configure Azure AD.
-
You have copied the sign-in URL in the OpenID Connect dialog.
Note
The structure of the redirect URL that Secure File Sharing passes to Azure AD is as follows: https://<diligent-platform-url>/auth/oidc/login/<organization-id> Extract the value of the redirect URL from the sign-in URL that you have copied. The value is URL encoded.
Complete the Azure AD configuration
-
In the sign-in URL, find the part that starts with &redirect_uri=. This is the redirect URL. Example: &redirect_uri=https%3A%2F%2Fsecurefiles.diligentbaords.com%2Fauth%2Foidc%2Flogin%2F87d7ac96-xxxx-yyyy-a5e2-6da49cac605b
-
Decode the URL so that it conforms to the structure of the redirect URL as shown in the note above. Example: https://securefiles.diligentbaords.com/auth/oidc/login/87d7ac96-xxxx-yyyy-a5e2-6da49cac605b
-
In Azure AD, select Authentication from the side panel.
-
On the Web panel, select Add URI. Enter the redirect URL that you have extracted and decoded.
-
Select Save.
The configuration is complete. Users are now able to sign in to Secure File Sharing via Azure AD. Azure AD domain users with existing Secure File Sharing accounts will be redirected to Azure AD for authentication once they have entered their email address on the default Secure File Sharing sign-in page. Azure AD domain users without Secure File Sharing accounts can use the sign-in URL to auto-provision their accounts. All Azure AD domain users can use the sign-in URL to sign in.
