enable sso in my application

Question

enable sso in my application

Dmytro 81

Hello everyone!

Previously, I created and registered an application in the Azure AD B2C portal using App registrations.
The application uses openid permission.
I read in the documentation that it should not be reflected in Enterprise applications.

Now I want to enable SSO for my application which I have already registered and it works.
I want to use the OAUTH protocol
I've read a lot of documentation but still don't understand how to enable SSO in my application.
I would be glad for any help and links to documentation and tutorials.

JimmySalian-2011 45,236 Reputation points

2022-10-13T11:03:24.29+00:00

Hi @Dmytro ,

Check this page out here and steps for enabling SSO for Ent Apps, add-application-portal-setup-sso This should give you a good start.
active-directory-v2-protocols

Hope this helps.

JS

==
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.
Dmytro 81 Reputation points

2022-10-13T12:26:47.987+00:00

Hello @JimmySalian-2011 ,

Thanks for the links. I have seen these articles.
I go to Enterprise applications and do not see the application I need in the list of corporate applications. How can I add it here?

Answer accepted by question author

0 additional answers

Your answer

JimmySalian-2011 45,236 Reputation points

2022-10-13T11:03:24.29+00:00

Hi @Dmytro ,

Check this page out here and steps for enabling SSO for Ent Apps, add-application-portal-setup-sso This should give you a good start.
active-directory-v2-protocols

Hope this helps.

JS

==
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.
Dmytro 81 Reputation points

2022-10-13T12:26:47.987+00:00

Hello @JimmySalian-2011 ,

Thanks for the links. I have seen these articles.
I go to Enterprise applications and do not see the application I need in the list of corporate applications. How can I add it here?

Answer 1

Givary-MSFT 35,776 Microsoft Employee Moderator

@Dmytro Thank you for reaching out to us. As I understand you want to enable SSO for your application which you created in Azure AD B2C.

This article describes the single sign-on methods used in Azure AD B2C and helps you choose the most appropriate SSO method when configuring your policy.

Reference: https://learn.microsoft.com/en-us/azure/active-directory-b2c/session-behavior?pivots=b2c-user-flow#:~:text=time%20period%20specified.-,Single%20sign%2Don%20configuration,- %2D%20The%20Azure%20AD

Difference between "enterprise application" and "app registration" in Azure -

https://stackoverflow.com/questions/54071385/difference-between-enterprise-application-and-app-registration-in-azure
https://marileeturscak.medium.com/the-difference-between-app-registrations-enterprise-applications-and-service-principals-in-azure-4f70b9a80fe5

Let me know if you have any further questions, please feel free to post back.

Dmytro 81 Reputation points

2022-10-14T09:15:40.693+00:00
Hello @Givary-MSFT !

Thanks for the answer.
I have read all the articles.
I seem to misunderstand how SSO works.
My scenario:

I have an alfa.com application registered with Azure AD B2C using application registration and user flows.

I have a beta.com application that is not registered with Azure.
I want that when a user logs into the alfa.com app, they will also be able to access the beta.com app without having to re-enter their credentials in the beta.com app.
What steps should I take to implement it?
Givary-MSFT 35,776 Reputation points Microsoft Employee Moderator

2022-10-17T03:55:24.473+00:00

@Dmytro

SSO method depends on how the application is configured for authentication. Cloud applications can use federation-based options, such as OpenID Connect, OAuth, and SAML. The application can also use password-based SSO, linked-based SSO, or SSO can be disabled.

Reference:

https://learn.microsoft.com/en-us/azure/active-directory/manage-apps/what-is-single-sign-on#:~:text=My%20Apps%20portal.-,Single%20sign%2Don%20options,-Choosing%20an%20SSO
Plan a single sign-on deployment - https://learn.microsoft.com/en-us/azure/active-directory/manage-apps/plan-sso-deployment#:~:text=Plan%20a%20single%20sign%2Don%20deployment

Let me know if you have any further questions, please feel free to post back.

Please remember to "Accept Answer" if answer helped, so that others in the community facing similar issues can easily find the solution.
Dmytro 81 Reputation points

2022-10-17T06:18:13.733+00:00

Hello @Givary-MSFT !

Do I understand correctly that in my scenario I need to use Azure AD Application Proxy to set up SSO between alfa.com and beta.com?
Givary-MSFT 35,776 Reputation points Microsoft Employee Moderator

2022-10-18T03:38:24.27+00:00

@Dmytro Azure AD Application Proxy is recommended for giving remote users access to internal resources. Application Proxy replaces the need for a VPN or reverse proxy for these remote access use cases.

Also refer to this https://learn.microsoft.com/en-us/azure/active-directory/fundamentals/active-directory-deployment-plans where different hybrid scenarios like ADFS to Cloud user Authentication, Azure AD Application Proxy & Seamless SSO have been mentioned.

Let me know if you have any questions, if required we can connect offline to discuss further on the same.
Dmytro 81 Reputation points

2022-10-20T12:58:48.983+00:00

Hello @Givary-MSFT !

Thanks for answers.
I configured SSO using SAML.
It took some time to understand how it works.

Share via

enable sso in my application

0 additional answers

Your answer