SupportLogic Azure AD OpenID Integration v2

Azure AD SSO OpenID Integration

TABLE OF CONTENTS

• Version History
• Azure AD Integration Steps
  • Overview
• Retrieve Primary Domain and Tenant Information
• Register New App in Azure AD for SupportLogic
• Create a new Client Secret

Version History

Azure AD Integration Steps

Overview

SupportLogic provides sign-in functionality using external identity and access management solutions compatible with the OpenID standard, such as Azure Active Directory (AD) for the SupportLogic SaaS application.  This ensures that SupportLogic adheres to the same authentication methods already in place at your organization. 

Once Single Sign On (SSO) is enabled in SupportLogic, Azure AD can be used to control access to SupportLogic.

Below are instructions on how to configure an Azure AD Identity Provider with the SupportLogic UI.  This requires action items from both the customer Azure Administrator and the SupportLogic onboarding team.

Retrieve Primary Domain and Tenant Information

Your Azure AD administrator must retrieve the Primary Domain and Tenant Information and provide the information to SupportLogic.  This information allows the SupportLogic UI to communicate with your Azure AD.

Complete the following steps:

1. Sign in at https://portal.azure.com

2. Search for Azure Active Directory and click on the first result under the Services

3. In the Overview page, copy and send to SupportLogic the Primary domain in the Tenant information box

Register New App in Azure AD for SupportLogic

Your Azure AD administrator must create a new App in Azure AD that is used to connect to the SupportLogic UI for authentication.

Complete the following steps:

1. On the left menu pane, under the Manage section, select App registrations

2. In the App registrations page, select New registration

3. Enter the following:

   1. Name: Your preferred name for this application, otherwise you can use “SupportLogic Auth0”.

   2. Supported account types: Choose Single tenant or Multi tenant depending on your needs.

   3. Redirect URI: choose Web on the left drop down, and enter https://supportlogic.auth0.com/login/callback as the value

   4. Press Register

Create a new Client Secret

Your Azure AD admin will need to create a new Client Secret to allow SupportLogic to communicate with your Azure AD instance. Once this is done you will need to provide the Client ID and Client Secret to SupportLogic.

Complete the following steps:

1. On the left menu pane, in the Manage section, click on Certificates & secrets

2. In the Client secrets section, click on + New client secret

3. In the Description you can use anything that will help you remember what this secret is for. The Expires dropdown will let you set the expiration of this secret, where the max is 24 months. 

Note: before this expiration period is reached, a new secret will need to be created and sent to SupportLogic to avoid service disruption.

4. Copy and send to SupportLogic the client secret in the Value column

5. In the left menu pane, click on Overview, copy and send to SupportLogic the Application (client) ID

6. Provide the following to SupportLogic:

   1. Application (Client) ID (from Step 5)

   2. Client Secret (Value) (from Step 4) 

Copyright © 2022 SupportLogic. All rights reserved. All trademarks, trade names, service marks, and logos referenced herein belong to their respective companies.