To facilitate setting up SSO via Azure AD (AAD), we need the following information:
1. Azure Tennant ID.
2. Azure Application ID (Instructions Below).
Users logging in from the configured company in RIB CX will then be required to login with the AAD credentials.
It matches user accounts based on their email address.
To Get Azure Application ID
To get an Application ID, you will need to register an App under Azure Active Directory.
1. Login to the Azure Portal: https://portal.azure.com/
2. Select Azure Active Directory
3. Select App Registrations
4. New Application Registration
a. Name: iTWOCX SSO
b. Application Type: Native
c. Redirect URI: https://au.itwoCX.com/CXR/Authentication
Edit Manifest File
1. Edit the manifest file – replyUrls:
"replyUrls": [ "https://au.itwoCX.com/" ],
2. Edit the manifest file – requiredResourceAccess:
"requiredResourceAccess": [ { "resourceAppId": "00000002-0000-0000-c000-000000000000", "resourceAccess": [ { "id": "311a71cc-e848-46a1-bdf8-97ff7156d8e6", "type": "Scope" }, { "id": "a42657d6-7f20-40e3-b6f0-cee03008a62a", "type": "Scope" } ] }, { "resourceAppId": "52e5f8a4-8b0e-455f-9df4-5beb7c37dd18", "resourceAccess": [ { "id": "5e626597-eec0-4695-8ddd-e3aa9e05f712", "type": "Scope" } ] } ],
3. Provide RIB with the Application ID and Tennant ID so we can update the project configuration under Contacts, Company Name, Authentication - External Providers:
If the user is not authenticated and tries to access the project message below will appear mentioning that this is a restricted account :