User Sync from Azure AD Office365 to WordPress can be achieved by using our User Sync for Azure AD Office365 plugin. This plugin uses Microsoft Graph API to fetch all the user's profiles from the Active Directory to the WordPress database. Seamless support for advanced sync features like Bi-directional user sync, automatic user creation & deletion, integration with SharePoint, PowerBI, Office365, Microsoft teams, OneDrive, Azure AD Profile Picture Sync and integration. In addition to this we also support 3rd party plugins like woo-commerce, Learndash, BuddyPress, Memberpress, Paid Membership etc.

1.Configuration Steps

i).  Creating an App Registration

Follow the steps below to configure the Azure AD Application:

• Log in to Azure AD Portal as an Administrator.
• Under the Azure Services section, select Azure Active Directory.
• You will be represented with the home screen of Azure Active Directory.

• In the left navigation, select the App registrations under Manage section.

• Click on the New Registration .

• Assign Display Name in the Name field and choose the Account type (Account in this organization directory only , Demo only - Single tenant).
• Redirect URI field is optional, you could provide the URL of your WordPress site.
• Now click on the Register button.

2.Getting values

i).  Application ID

• After an application registration, Azure AD assigns a unique Application ID to your application.
• Navigate to your Application Overview tab, in the left panel.
• Copy the Application ID, this will be your Client ID.

ii).  Client Secret

• Navigate to the Certificates & Secrets tab.
• Click on New Client Secret. Enter the Description and expiration time of the Client Secret and click on the Add button.

• Copy the value of Client Secret. This will be your Client Secret Key.


Note: Copy the value of Client Secret not the Client Secret ID

iii).  Tenant ID

• Go to the Overview tab in your Azure Active Directory. Copy the value of Directory ID, this will be your Tenant ID .

iv).  Tenant Name (Primary Domain)

• Go to your Azure AD Tenant and navigate to the Overview tab and copy the Primary domain. This will be your Tenant Name.

3.Grant API Permissions

Add API Permissions to your Azure AD Application:

• Go to API Permissions from the left navigation pane and click on Add a permission button.Then select Microsoft Graph to proceed further.

• Select Application Permissions and search for User.
• Under User select User.Read.All permission. Click on the Add permissions button.

• In order to configure the Sharepoint plugin you need to grant an additional permission Sites.Read.All
• Then click on the Add a permission button and select Microsoft Graph.

• Navigate to the Application permissions to select the Sites.Read.All permission and then click on the Add permissions button.

• Now click on Grant admin consent and click onYes to Grant admin consent confirmation.

• Your final output should look like the image given below.

• You have successfully configured your Azure AD application.

Additional Resources

• What is Single Sign-On (SSO)?
• What is SAML?
• Frequently Asked Questions (FAQs)

If you are looking for anything which you cannot find, please drop us an email on samlsupport@xecurify.com