- 2 Minutes to read
Setting up Entra ID (Azure AD) SSO for NordLayer Service Management Portal
- 2 Minutes to read
Integrating Entra ID (Azure AD) single sign-on (SSO) makes it possible to make a user journey seamless when logging into the Service Management Portal.
To set up Entra ID (Azure AD) you’ll need to obtain Application (client) ID, Directory (Tenant), and Generated Client Secret Value.
Follow these steps to obtain all the needed values for your Entra ID (Azure AD) integration:
- Start by logging into your Entra ID panel
- Select App registrations in the main menu
- Click on New registration
- In the Name field, input NordLayer
- Choose your supported account types
- Click Register at the bottom of the page
- In the newly opened page, select the API permissions tab on the left
- Click Add a permission
- Select Microsoft Graph and opt for Delegated permissions
- Under OpenId permissions, mark profile and email. Ensure User.Read under User is checked.
- Press Add permissions to confirm your selections
- Click Grant admin consent for to grant consent for all users
- Select Yes in the confirmation prompt
- Navigate to the Token configuration tab
- Select Add optional claim and choose Token type - ID. Also, mark claims: email, upn and press Add to confirm your selections
- Open the Authentication tab in the left menu
- Select Add a platform at the top
- Choose Web
- In the Redirect URls field, enter:
https://partner-api.nordlayer.com/v1/tokens/oauth/resolution
- At Implicit grant and hybrid flows, check Access tokens and ID tokens
- Save the changes by clicking on Configure at the bottom
- Open Overview in the left menu
- Copy the Application (client) ID and keep it safe
- Copy the Directory (Tenant) ID and keep it safe
- Open the Certificates & secrets tab in the left menu
- Choose the Client secrets tab and press New client secret
- In the description field, enter NordLayer
- In the expiry field, select 24 months
- To save the changes, click on Add at the bottom
The generated client secret value is only shown only once
- Once you obtain all the needed values, you can set up a log-in to the Service Management Portal using Entra ID (Azure ID):
Go to the NordLayer Service Management Portal
Navigate to Settings and click Login methods.
Choose Entra ID (Azure AD) and input the copied values
Once you submit this information, your organization's members will be able to log into the Service Management Portal using Entra ID (Azure AD).
Note: It's possible to have multiple SSO methods enabled concurrently.
In case you have any questions or are experiencing any issues, please feel free to contact our 24/7 customer support team.