Home
Product documentation
Support homeSupport requestsSystem statusTrust centerTry for free

Microsoft login setup

Strivacity supports social authentication using external identity providers such as Microsoft. This allows customers to log in to your application using their existing Microsoft identity.

Prerequisites

Microsoft requires a number of prerequisite steps to be completed before you can use Microsoft as a login provider.

This process can be achieved in four steps:

  • Step 1: Create an Azure account with an active subscription. You can skip this step if you already have an Azure account.
  • Step 2: Create an Azure AD B2C tenant. You can skip this step if you already have an Azure AD B2C tenant.
  • Step 3: Register an application with the Microsoft Identity Platform. Here, you configure Microsoft Login and choose the account types, for example, a social (personal) Microsoft account, or an account from Azure AD.
  • Step 4: Configuring Strivacity with Microsoft Login. Once you’ve completed steps 1, 2, and 3 in Azure, you can configure Microsoft Login in Strivacity.

Step 1: Create an Azure account

If you don't have an existing Azure account with an active subscription, the first step in setting up Microsoft Login is to create an Azure account.

You can sign up for an Azure account here. Once you have successfully registered an account, you can proceed to step 2.

Step 2: Create an Azure AD B2C tenant

📘

The full Microsoft tutorial on how to create an Azure B2C tenant, along with guidance on troubleshooting the process can be found here.

The following steps provide a simplified overview of the required configuration. For detailed instructions, refer to the Microsoft documentation.

  1. Sign in to the Azure Portal using an Azure account with at least the Contributor role for the relevant subscription.

  2. Select the directory that contains your subscription using the Directory + Subscription toolbar button. Once the correct directory has been selected, choose Create a resource.

  3. Search for Azure Active Directory B2C:

Click to Enlarge
  1. Select Create under Azure Active Directory B2C.
Click to Enlarge
  1. Now choose whether you want to create a new Azure AD B2C tenant or link this subscription to an existing tenant. This guide uses a new Azure B2C tenant.
Click to Enlarge
  1. Provide the information required to create a tenant. Once created, a confirmation screen will be shown.
Click to Enlarge
  1. Once the tenant is created, you can move on to step 3.

Step 3: Register an application with the Microsoft Identity Platform

📘

The full Microsoft tutorial and instructions on how to register an application with the Microsoft Identity Platform can be found here.

  1. If you are not currently logged in to Azure, proceed to log in to Microsoft Azure here, using your Azure account from step 1.

  2. In the navigation menu, select All services.

Click to Enlarge
  1. Next, select Identity, then App registrations.
Click to Enlarge
  1. Select New registration.
Click to Enlarge
  1. Enter a name for the application and select the Supported account types, based on how you want users to sign in.
    Under Redirect URI, keep the platform set to Web and enter: https://<yourStrivacityInstanceURL>/provider/continue
Click to Enlarge
  1. Select Register. The Application details page is displayed. Copy the Application ID and store it for later use when configuring Microsoft login in Strivacity.
  2. In the left-hand menu, select Certificates & secrets.
Click to Enlarge
  1. Under Client secrets, select New client secret.
Click to Enlarge
  1. Enter a description and choose the expiry for the client secret.
Click to Enlarge
  1. After the Client Secret is generated, copy its value and store it securely.

Step 4: Configuring Strivacity with Microsoft Login

Following these steps will finalize your setup for using Microsoft Login as a social login provider for your application in Strivacity.

  1. Start by logging into the Admin Console using an admin account.

  2. From the left-hand menu, select Identities, then Social login.

  3. Select Create.

  4. Select Microsoft from the list of available social provider capabilities.

  5. Fill in the Configuration for Microsoft as a social login provider. Copy the Client ID and Client Secret from the Azure Portal (steps 6 and 10 above), and paste the respective values into the Client ID and Client Secret fields here.

  6. The Scopes that your Strivacity application will request are already defined.

  7. Enable Synchronize and store profile data at each login to ensure customer data is kept up-to-date inside your application. If you choose to synchronize and store this social profile data at each login, Strivacity will retrieve and store this information, which will be visible to the customer on their My Account page and to any Strivacity admins when managing the customer's identity.

  8. You can also define Additional parameters that are included in the authorization request sent to Microsoft. These parameters allow you to control provider-specific authentication behavior. For example, some providers support parameters such as prompt=login to force re-authentication instead of reusing an existing session.

Updated 8 days ago