Open Thejaswini-Rao-U opened 1 month ago
Hi Team,
Any solution?
Hi @Thejaswini-Rao-U,
have you followed the instructions for SSO with Azure AD / Entra ID: To use Azure AD as authentication provider, you have to create a new Azure AD app:
+ New registration
to create a new app.Name
field.Redirect URI
to https://your-pimcore.com/sso/redirect - please replace the domain name to your real one. Register
Application (client) ID
from the app configuration page and paste it in the Pimcore SSO configuration's field Client ID
.Certificates & secrets
.+ New client secret
. Provide a description and an expiration length that follows your security organization’s guidelines. Then click Add.Client Secret
.Discovery URL
enter https://login.microsoftonline.com/[TENANT]/.well-known/openid-configuration - please replace [TENANT]
with your tenant id.Scopes
use openid
, profile
, email
Pimcore field | Azure AD field |
---|---|
Username / login | unique_name |
Given name | given_name |
Family name | family_name |
unique_name | |
Groups / Roles | groups |
I am not 100% sure what a "reply address" is. Please check the Redirect URI
of your app in Azure AD / Entra ID. If it really needs a reply email address somewhere, please enter something.
@BlackbitDevs , Thanks for the response. App registration i need to check with my client. what i have done is in the configuration, we have added client id, secret token and URL and user/email id.
after configuration is done when i logout and login it will show the button and clicking on the button it ask for the email id and password for the login then next page of password it will ask for permission request when i accept it redirects into the above error page which is attached in the screenshot.
Hi Team,
Now client has given secret key different and when im trying to login with their id gives different error shows below
@BlackbitDevs , i have configured in pimcore below fields like
Username / login - email id Given name - given_name Family name - family_name Email - unique_name Groups / Roles - groups
is this correct? only username i have mentioned client email which we are going to use for redirect url login Please confirm if im missing anything in configuration. because im facing same issue after configuring all the details correctly
any update?
@Thejaswini-Rao-U According to https://stackoverflow.com/a/66275320 the redirect URL in your Azure AD / Entra app is wrong. Please set this to https://<your Pimcore domain>/sso/redirect
, so if your Pimcore is running on https://example.org, set the redirect URL in the Entra app to https://example.org/sso/redirect
Hi Team
I have installed black bit on pimcore 10.6.9 version, but getting the below error attached
Please let me know how i can solve it?
Thanks in advance Thejaswini