Setup Guide for Azure AD OAuth / OpenID Connect App

Steps to configure Azure AD Single Sign-On (SSO) Login into WordPress

Step 1: Setup Azure Active Directory as OAuth Provider

  • Sign in to Azure portal.
  • Click on App Services and go to Manage Azure Active Directory.
  • OAuth/OpenID/OIDC Single Sign-On (SSO), AzureAD SSO Login
  • In the left-hand navigation pane, click the App registrations service, and click New registration.
  • OAuth/OpenID/OIDC Single Sign-On (SSO), AzureAD SSO App-Registration
  • When the Create page appears, enter your application's registration information:
  • Name : Name of your application.
    Application type :
    1. Select "Web app / API" for client applications and resource/API applications that are installed on a secure server. This setting is used for OAuth confidential web clients and public user-agent-based clients. The same application can also expose both a client and resource/API.
    Sign-on URL :
    1. For "Web app / API" applications, provide the base URL of your app. eg, https://<domain-name> might be the URL for a web app running on your local machine. Users would use this URL to sign in to a web client application.
  • When finished, click Register. Azure AD assigns a unique Application ID to your application. Copy Application ID and the Directory ID , this will be your Client ID and Tenent ID.
  • WordPress OAuth/OpenID/OIDC Single Sign-On (SSO), Azure AD SSO Overview
  • Go to Certificates and Secrets from the left navigaton pane and click on New Client Secret. Enter description and expiration time and click on ADD option.
  • WordPress OAuth/OpenID/OIDC Single Sign-On (SSO), Azure AD SSO secret-Key
  • Copy value. This will be your Secret key.
  • WordPress OAuth/OpenID/OIDC Single Sign-On (SSO), Azure AD SSO Secret-Key-2

    Azure AD Endpoints and Scope:

    Scope: openid
    Authorize Endpoint: https://login.microsoftonline.com/tenant-id/oauth2/authorize
    Access Token Endpoint: https://login.microsoftonline.com/tenant-id/oauth2/token
    Get User Info Endpoint: https://login.windows.net/common/openid/userinfo
    Custom redirect URL after logout:[optional] https://login.microsoftonline.com/common/oauth2/logout?post_logout_rediret-uri=<your URL>

You have successfully configured Azure AD as OAuth Provider for achieving Azure AD login into your WordPress Site.

Hello there!

Need Help? We are right here!

support
Contact miniOrange Support
success

Thanks for your inquiry.

If you dont hear from us within 24 hours, please feel free to send a follow up email to info@xecurify.com