Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
In this article, you learn how to integrate Labelbox with Microsoft Entra ID. When you integrate Labelbox with Microsoft Entra ID, you can:
Use Microsoft Entra ID to control who can access Labelbox. Enable your users to be automatically signed in to Labelbox with their Microsoft Entra accounts. Manage your accounts in one central location: the Azure portal.
Prerequisites
The scenario outlined in this article assumes that you already have the following prerequisites:
- A Microsoft Entra user account with an active subscription. If you don't already have one, you can Create an account for free.
- One of the following roles:
- Labelbox single sign-on (SSO) enabled subscription.
Add Labelbox from the gallery
To configure the integration of Labelbox into Microsoft Entra ID, you need to add Labelbox from the gallery to your list of managed SaaS apps.
Sign in to the Microsoft Entra admin center as at least a Cloud Application Administrator.
Browse to Entra ID > Enterprise apps > New application.
In the Add from the gallery section, enter Labelbox in the search box.
Select Labelbox in the results panel and then add the app. Wait a few seconds while the app is added to your tenant.
Configure Microsoft Entra SSO
Follow these steps to enable Microsoft Entra SSO in the Microsoft Entra admin center.
Sign in to the Microsoft Entra admin center as at least a Cloud Application Administrator.
Browse to Entra ID > Enterprise apps > Labelbox > Single sign-on.
Perform the following steps in the below section:
a. Select Go to application.
b. Copy Application (client) ID and use it later in the Labelbox side configuration.
c. Under Endpoints tab, copy OpenID Connect metadata document link and use it later in the Labelbox side configuration.
Navigate to Authentication tab on the left menu and perform the following steps:
a. Enable the ID tokens (used for implicit and hybrid flows) checkbox.
b. select Save.
Note
The Redirect URIs value will auto populate, you don't need to perform any manual configuration here.
Navigate to Certificates & secrets on the left menu and perform the following steps:
Go to Client secrets tab and select +New client secret.
Enter a valid Description in the textbox and select Expires days from the drop-down as per your requirement and select Add.
Once you add a client secret, Value is generated. Copy the value and use it later in the Labelbox side configuration.
Create and assign Microsoft Entra test user
Follow the guidelines in the create and assign a user account quickstart to create a test user account called B.Simon.
Configure Labelbox SSO
To complete the OAuth/OIDC federation setup on Labelbox side, you need to send the copied values like Client ID, Client Secret and OIDC Metadata file from Entra to Labelbox support team. They set this setting to have the OIDC connection set properly on both sides.