Enabling Office365 SSO

Video Instructions


Steps to create success4 application in Azure Portal

Source Link: https://docs.microsoft.com/en-us/azure/active-directory/develop/quickstart-register-app

  1. Login to Azure Portal
  2. Click on the Azure Active Directory

  3. Go to App Registrations on the left menu items.
  4. Click on the New Registration button from the top menu items to create a new Success4 Application
  5. Enter the required details in the form like Name, Support Account Type & Redirect URI

    - Name:   Application Name
    - Support Account Type:  Accounts in any organizational directory Any Azure AD directory - Multitenant)
    - Redirect URI:  Select Web and The URI should be success4 instance domain redirect URL 
  6.  Click Register to create an application.
  7.  Once the application has been created successfully, you will be redirected to the created application dashboard with all the details like Application Client ID, Display Name, etc..,
  8.  Click on Add a certificate or secret next to Client Credentials to create Client Secret.


  9. Click on the New Client Secret to create a client secret.
    Enter Description for Client Secret and Select the Expiration period of client secret from the drop-down list and click on Add.  Once the Client Secret has been created, Please copy the value from the Client Secrets listing (This will be visible to users only once after creates)

  10. Go to the API Permissions menu tab and click on the Add a permission to add permissions and select Microsoft Graph from the applications list as shown below.

  11.  Select the Mentioned below List in the application:
      1. Open Id Permission
          - Email
          - Offline_access
          - OpenId
          - Profile
    2. Calendar
         - Calendar.Read
         - Calendar.ReadWrite
    3. Mail 
         - Mail.Read
         - Mail.ReadWrite
         - Mail.ReadBasic
         - Mail.Send

  12. Click on the Grant admin consent for success4  and Click on Yes to confirm to grant all the selected API Permissions.

  13.  You are all set to use Microsoft Application within Success4 Instance.

Enabling Office365 SSO in Success4

  1. Go to the admin portal.
  2. Go to the settings, Change the auth method to OAuth-Office365

  3. For Office365, click  Configure. 

  4.  Enter the details in the above configuration screen as shown below:
    1. Authorization URL:  https://login.microsoftonline.com/common/oauth2/v2.0/authorize
    2. Token URL:    https://login.microsoftonline.com/common/oauth2/v2.0/token
    3. App Client ID: Will be found under App Registration with the name Application (client) ID
    4. Client Secret: Will be found under App Registration with the name Client Secret value
    5. Redirect URI:  https://domain_name/oauth/callback/ms/
    6. Scopes:  - Will be given according to the permissions
      Basic Scopes are : openid profile email offline_access User.Read  User.ReadWrite.All User.ReadBasic.All User.Read.All Directory.Read.All Directory.ReadWrite.All mail.read mail.readWrite mail.send calendars.read calendars.readWrite
  5. Click Save.

Still need help? Contact Us Contact Us