HR

Step-by-step guide

This guide provides step-by-step guidance on how to set up single sign-on (SSO) for HR if you use Entra OpenID (formerly Azure) Tenant configuration.

You can also download a PDF version of the guide at the end of the article.

How to set up Entra OpenID Tenant configuration for SSO

1. Click on the Single Sign On tab in the Sign-in admin area.

2. If your Tenant ID has been added for you, you just need to add your Domain. Click on the … button and move to step 5

3. To add a new tenant, under Entra openID tenant configuration click Add tenant

4. A Tenant ID is a unique identifier that tells a service or application which organisation's identity system to use for Single Sign-On (SSO). Locate and enter the Tenant ID from your Entra (Azure) portal.

5. Next, add the recognised domains associated with the tenant for SSO. Ciphr recognises which tenant to redirect a user to by that user’s email address. Enter any email domains that should be associated with this tenant.

6. Click +Add

7. If users need to authenticate with different email domains within this tenant, repeat the last two steps. To remove a domain, click the x button next to the domain you wish to delete

8. Click Submit

Once activated, users logging in with an email from a previously configured domain will no longer be able to access the system using a username and password. To ensure the setup works correctly, it's good practice to have someone else test it. This allows the person who configured it to disable or modify the settings if necessary.

By following these steps, you’ll have successfully configured your application for SSO with Entra OpenID using Microsoft accounts.