Configure SSO with Microsoft Entra

1. Sign in to the Rapidfort Platform using an admin account.

2. Navigate to Settings > Single sign-on.

3. Complete the SSO configuration fields:

• Display Name: This is the name that will appear on Azure's dashboard for this application.
• Client ID: The ID that the application uses to request authentication or access tokens from Azure.
• Client Secret: Used alongside the Client ID to securely authenticate the application to Azure.
• Well-Known URI: A URI to retrieve metadata related to Azure’s configuration (e.g., authorization and token endpoints).
• IDP Scope: Defines the specific user information or resources requested during authentication.

How to generate Client ID and Client Secret from Entra Admin Console

To generate the Client ID and Client Secret:

1. Go to Microsoft Entra admin center

2. Navigate to Applications > App registrations

3. Click New registration and:
   • Set Redirect URI to Web.
   • Fill in other required fields based on your organization’s needs.
   • Click Register.

4. After registration, you’ll be redirected to the app overview page:

5. Copy the Application (client) ID and paste it on the web UI of Rapidfort platform

6. Under the Manage section, navigate to Certificates & secrets.

7. New client secret

8. Fill in the Description and set the expiration time. Click Add

9. Copy the Value of the new client secret. Paste this value in the Rapidfort platform under Client Secret.

4. For the Well-Known URI, Go back to Overview and Click on Endpoints

5. Copy the OpenID Connect metadata document link, and use it as the Well-Known URI in the Rapidfort platform.

6. Fill in the IDP Scope based on your organization’s authentication requirements, then click Submit.
7. After submission, you will see two IDP Redirect URLs.

8. Return to the Entra Admin Console > Overview for the app registration. Click Add a Redirect URI.

9. On the new page, Click on Add a platform under Platform configuration

10. Click Web in the Configure Platforms screen

11. Add your Redirect URIs from the IDP redirect URIs you got from the Rapidfort UI

12. Add both Redirect URIs you received from Rapidfort and Save the configuration

13. Sign out of the platform
14. Test the new SSO configuration by signing in again using your organization’s Azure credentials.

Your Single Sign-On setup with Azure Entra for the Rapidfort platform is now complete.