Azure OIDC

Hint
This article refers to configuring SSO login using Azure AD and OIDC. Learn how to use OIDC to integrate your Azure services with Buddy pipelines.

Follow these steps to add Azure as the OIDC SSO provider for your workspace:

  1. Open Buddy SSO settings in one browser tab and switch to Open ID connect → Azure.
  2. In another tab, sign in to Azure and open Microsoft Entra ID.
  3. Go to App registrations and click +New registration from the top menu.
  4. Enter the name of the application and paste the Callback URL from Buddy's SSO settings to Redirect URI:

Image loading...

  1. Click Register and copy the Application (client) ID. You'll need to provide it later on in Buddy.

Image loading...

  1. Next, switch to the application's Endpoints tab and copy OpenID Connect metadata document. This is the issuer that you need to provide in Buddy.

Image loading...

  1. Close the right sidebar and click Add a certificate or secret.
  2. Click +New client secret and provide the description and expiration time in the right sidebar.
Warning
Once the secret expires, the integration will no longer work. Make sure to regenerate it in advance.
  1. Click Add and copy the Value of the secret. This is the client secret that you need to paste in Buddy.

Image loading...

  1. Switch back to Buddy and paste the copied values:
  • Issuer URL → OpenID Connect metadata document
  • Client ID → Application (client) ID
  • Client secret → the value of Azure's client secret
  1. Click Test configuration and enable SSO on success.
  2. Sign in to your Azure account to save the SSO configuration.

Last modified on Sep 23, 2024