Setting up Microsoft Active Directory SSO
Note: This is a paid feature on a per client basis, for more information please contact our sales team at sales@pheedloop.com.
One of the many integrations PheedLoop offers is Microsoft Azure. With this integration, you will be able to login as an admin, login to the virtual portal, and quickly register for an event using Microsoft Azure.
Please note, SSO is only availible for Event Website / Registration and the Virtual Portal and Proposals / Stakeholder Portals (Attendee, Speaker, Sponsor, Exhibitor)
1. Configuring your Microsoft Active Directory account
You will need to have access to a Microsoft Active Directory account and access to Active Directory. Before you can integrate with PheedLoop, you will have to configure some settings in your Active Directory Account.
- From Azure’s Dashboard, navigate to Settings
- From the Manage tab, navigate to to All Applications
- Select New Registration and select Accounts in any organizational directory (Any Azure AD directory - Multitenant) under Support Account Types
- Do not enter a redirect URL at this time.
- Once the application has been created, the Application (Client) ID, and Directory (Tenant) ID can be entered into PheedLoop
- To get a Client Secret, select Add a certificate or secret under Client credentials, then select New client secret. You will be able to set a description, and expiry date for your secret key.
- Copy the Value ID immediately after creating it, as it will not be visible afterwards. This key should be pasted into the PheedLoop Form, please see step 2: Connecting Microsoft Active Directory with PheedLoop for more information.
- Do not confuse the Value ID with the Secret ID. The Value ID is the correct item to use.
- Under Platform Configurations select Add a Platform > Web. This is where you will need to add a Redirect URL.
- Registration
- Under Redirect URLs type the following URL: https://site.pheedloop.com/event/[your event code]/register#start
- You can find the event code in your PheedLoop Dashboard by navigating to Event > General Details
- Under Front-channel logout URL type the following URL: https://localhost:3000/logout
- Under Redirect URLs type the following URL: https://site.pheedloop.com/event/[your event code]/register#start
- Virtual Portal
- Under Redirect URLs type the following URL: https://pheedloop.com/{your event code}/virtual/
- You can find the organization code in your PheedLoop dashboard by navigating to Settings > Account > Event Power-ups > finding your event and entering the Code
- Under Front-channel logout URL type the following URL: https://localhost:3000/logout
- Under Redirect URLs type the following URL: https://pheedloop.com/{your event code}/virtual/
- Dashboard:
- Under Redirect URLs type the following URL: https://dash.pheedloop.com/{your organization code}/login
-
- You can find the organization code in your PheedLoop dashboard by navigating to Settings > Account and entering the Account ID
- Under Front-channel logout URL type the following URL: https://localhost:3000/logout
-
- Under Redirect URLs type the following URL: https://dash.pheedloop.com/{your organization code}/login
- Registration
-
- Under Redirect URLs type the following URL: https://pheedloop.com/{your event code}/virtual/
- You can find the organization code in your PheedLoop dashboard by navigating to Settings > Account > Event Power-ups > finding your event and entering the Code
- Under Front-channel logout URL type the following URL: https://localhost:3000/logout
- Under Redirect URLs type the following URL: https://pheedloop.com/{your event code}/virtual/
- Toggle on the Access tokens (used for implicit flows) checkbox
- Permissions may need to be updated, these can be updated under API Permissions > Microsoft Graph > Delegated Permissions. PheedLoop uses the following scopes:
- openid
- profile
- User.Read
- Permissions may need to be updated, these can be updated under API Permissions > Microsoft Graph > Delegated Permissions. PheedLoop uses the following scopes:
- Ensure that you your User Groups have the correct permissions
2. Connecting Microsoft Active Directory with PheedLoop
Once your Active Directory account is set up, you can now integrate your account within PheedLoop.
- From the Event Dashboard, navigate to Settings > Integrations > Single Sign On Integrations
- Under Microsoft Active Directory, select Not Connected
- Enter your Active Directory credentials to allow PheedLoop to enable dashboard SSO for your organization
- Active Directory Tenant ID
- Active Directory Client ID
- Active Directory Client Secret (please see 4A. For more information)
- Select Submit, your Microsoft Azure account will now be connected to your Event Dashboard
3. Testing Active Directory
There are a few ways to test out your Active Directory:
Logging into the PheedLoop Dashboard as an Administrator
- Ensure that whoever you are attempting to login via Microsoft Active Directory SSO has been added as a team member
- This can be done from the drop-down menu at the top right corner of your Dashboard, navigate to Settings > Team Members > Team.
- Once this is done - logout - then go to dash.pheedloop.com and attempt to login with the Microsoft Active Directory Button
- If you encounter the following error messages:
"Unable to connect to Active Directory. Please try again later." - This means the client_id or client_secret is incorrec
"Unable to validate your profile. Please check with your administrator." - the "scopes" are likely insufficient
Logging into the PheedLoop Virtual Event as an Attendee
- Ensure that whoever you are attempting to login via Microsoft Active Directory SSO has an attendee profile in the Event Dashboard.
- This can be done by going to Attendees > Attendees and selecting Create and fill out the member's information.