Microsoft Entra ID Single Sign-On

Microsoft Entra ID Single Sign-On allows you to log in to Improvado via your Azure account and safely share access to Improvado between different Azure accounts.

How to Set up Single Sign-On via Azure

1Ensure your Azure account is active and the Whitelabel for your Improvado account is already set up.

2‍Step 2. Get the required credentials from Azure platform:

2.1In the Azure Portal, go to Entra ID.

2.2Go to Enterprise applications.

2.3Click New application.

2.4Click Create your own application, enter the name of your app and select Register an application to integrate with Microsoft Entra ID (App you’re developing).

2.5Select Supported accounts types — Accounts in this organizational directory only and set Redirect URI https://<whitelabel-domain>/api/dts/v2/allauth/microsoft/login/callback/.

2.6Return to All applications.

2.7Select Single sign-on.

2.8Click Go to application.

2.9Copy Client ID and Tenant ID, then click Add a certificate or secret.

2.10Click New client secret.

2.11Set description and expiration date (set maximum of 24 months).

2.12Copy Client Secret from the Value column.

2.13Return to All applications and select your application.

2.14Select Manage → API permissions menu and click Add a permission.

2.15Add User.Read permission.

2.16Click Grant admin consent for your organisation.

2.17Click Yes.

2.18You should see a green checkmark as permission status.

3‍Step 3. Please provide the following credentials to your Customer Success Manager via Keeper's One-Time Share feature:

• Azure Tenant ID
• Client ID
• Client Secret

4If everything was set up correctly, you should see the new Sign In with Entra ID button on the Improvado Login page:

5During the initial sign-in via Microsoft Entra ID SSO, you’ll be asked to enter your Microsoft Email and Password.
And after that, you’ll immediately access the Improvado UI.