Configure Azure AD Single Sign-On (SSO) with Joomla OAuth Client Plugin
Set up Single Sign-On (SSO) on your Joomla website with Azure AD Single Sign-on (Azure
using our Joomla OAuth &
OpenID Connect Single Sign-On plugin. Joomla OAuth Client plugin with Azure AD as IDP allows users to
log into Joomla websites and applications with a single set of credentials.
Azure AD, or Active Directory, acts as the OAuth Provider and Joomla acts as the OAuth Client. Joomla Azure AD
SSO provides smooth login between these two, removing the need to remember usernames and passwords.
The plugin provides advanced SSO features like user profile attribute mapping, role mapping, and Azure multi-tenant
login and providing site access based on organization email domains.
For "Web app / API" applications, provide the base URL of your app.
might be the URL for a web app running on your local machine. Users would use this URL
to sign in to a web client application.
For "Native" applications, provide the URI used by Azure AD to return token
responses. Enter a value specific to your application.
Under Redirect URL, select Web from the dropdown and enter the
Callback URL copied earlier in the given field.
Integrating Joomla with Azure AD
When finished, click Register. Azure AD assigns a unique Application ID to your application.
Copy Application ID and the Directory ID, this will be your Client
ID and Tenant ID respectively.
Go to Certificates and Secrets from the left navigaton pane and click on New Client Secret. Enter
description and expiration time and click on Add option.
Copy value. This will be your Secret key.
Paste the Client ID, Client Secret and Tenant. click on Save Settings.
Now click on Test Configuration button, you will be able to see the attributes in the
Test Configuration output as follows.
4. Azure AD Attribute
User Attribute Mapping is mandatory for enabling users to successfully login into Joomla. We will be setting
up user profile attributes for Joomla using below settings.
Now go to the Attribute Mapping tab and Select the attribute name for Email and
Username from dropdown. Then click on Save Attribute Mapping button.
Now you can use Login / SSO URL to perform SSO.
Now logout and go to your Joomla site's pages where you have added this link. You will see a login link
where you placed that button. Click on this button to perform SSO.
Azure AD Grant Consent & Role/Group
Go to Application --> Select the application where you want to configure the group mapping. Now, Go to the API
Click on the Add permission button, and then Microsoft Graph API -> Delegated
Permissions and select openid,
Profile scope and click on the Add Permissions button.
Click on the Grant consent for Demo button.
Go to Manifest tab and find groupMembershipClaims and changes it’s value to
"All" and click on the save button.
Now you would be able to get the group's value in the Test configuration window.
Now go back to Joomla OAuth Client plugin.
Go to the Attribute Mapping section in the plugin and map the Attribute Names from the Test
Configuration table. Now enter Group Attribute name on the given field. (Refer to the screenshot)
Now go to the Role Mapping tab. Here make sure that Enable Role Mapping is
checked. Now assign the Group/Role names to the desired groups in Joomla, then click on Save Role
Mapping Settings button.
Congratulations, you have successfully configured the miniOrange OAuth Client plugin with your Azure AD/Microsoft Intra ID
Click on the Upgrade Plans tab to check out our complete list of features and various licensing
plans. OR you can click here to check features and licensing plans.
If you want to purchase any of the paid version of the plugin, you have to register/login with us in
Account Setup tab. OR you can register/login here.
In case, you are facing some issue or have any question in mind, you can reach out to us by sending us your
query through the Support button in the plugin or by sending us a mail at firstname.lastname@example.org.
In this guide, you have successfully configured Joomla Azure AD Single Sign-On (SSO) by configuring Azure
AD as OAuth Provider and Joomla as OAuth Client using our Joomla OAuth Client
plugin.This solution ensures that you are ready to roll out secure access to your Joomla site using Azure AD
login credentials within minutes.
Joomla Azure Integrator
Joomla Azure AD Integration
Azure AD Integration allows you to achieve seamless Login, Registration, Profile Update, and Password Reset
of Azure AD and Azure B2C
users from Joomla.
Mail us on email@example.com for
quick guidance(via email/meeting) on your requirement and our team will help you to select the best suitable
solution/plan as per your requirement.
Need Help? We are right here!
Contact miniOrange Support
Thanks for your inquiry.
If you dont hear from us within 24 hours, please feel free to send a follow up email to firstname.lastname@example.org
This privacy statement applies to miniorange websites describing how we handle the personal
When you visit any website, it may store or retrieve the information on your browser, mostly in the
form of the cookies. This information might be about you, your preferences or your device and is
mostly used to make the site work as you expect it to. The information does not directly identify
you, but it can give you a more personalized web experience.
Click on the category headings to check how we handle the cookies.
Strictly Necessary Cookies
Necessary cookies help make a website fully usable by enabling the basic functions like site
navigation, logging in, filling forms, etc. The cookies used for the functionality do not store any
personal identifiable information. However, some parts of the website will not work properly without
These cookies only collect aggregated information about the traffic of the website including -
visitors, sources, page clicks and views, etc. This allows us to know more about our most and least
popular pages along with users' interaction on the actionable elements and hence letting us improve
the performance of our website as well as our services.