Enterprise
  • Enterprise Admin Portal
    • Overview
    • Groups
      • Group page tabs
    • Group security
      • Two-factor authentication
      • Single sign-on
        • Using Microsoft Entra for SSO
        • Using Google Workspace for SSO
        • Editing an SSO configuration
        • Turning off SSO
      • Remember Me
    • Group Sessions
      • Persistent and commercial Sessions
        • Creating a persistent Session
        • Creating a commercial Session
        • Editing a persistent or commercial Session
        • Changing between persistent and commercial
        • Managing additional hosts
        • Quick links
        • Inviting all group members to a persistent or commercial Session
        • LITE user limits in persistent Sessions
    • Subgroups
      • Creating a subgroup
      • Editing a subgroup
      • Deleting a subgroup
    • Group membership
      • Invitations
        • Creating an invitation
        • Deleting an invitation
        • Bulk import of users
      • Removing a member from a group
      • Changing a member’s role in a group
      • Copying a group membership
      • Moving a group membership
      • Managing your group membership in the web manager
        • Managing your current memberships
          • Leaving a group
          • Setting your default group
        • Managing your invitations
    • Activity logs
      • Group activity logs
      • Session activity logs
      • User activity logs
    • Using a logo image
      • Logo image requirements
      • Uploading your logo image
      • Screens where the logo image will appear
      • Custom branding
    • Custom branded IFX
      • Branding image requirements
      • Downloading branded IFX templates
      • Uploading an image file for custom branded IFX
      • Using custom branded IFX in the ENGAGE application
    • User interface
      • Search bar
      • Select all
      • Exporting data
    • Managing access to ENGAGE LINK
Powered by GitBook
On this page
  1. Enterprise Admin Portal
  2. Group security
  3. Single sign-on

Using Microsoft Entra for SSO

PreviousSingle sign-onNextUsing Google Workspace for SSO

Last updated 1 year ago

When you register the ENGAGE application with Microsoft Entra, you must grant the application User.Read as a delegated permission for the Microsoft Graph API. For more information, refer to in the Microsoft documentation.

If you incorrectly configure SSO for your group, members of your group will not be able to log in to the application. Ensure that you test your SSO log-in after you configure it.

To enable SSO for your Enterprise group and any subgroups, complete the following steps:

  1. Go to , and then log in.

  2. From the menu, select Groups.

  3. Select the name or the View icon for the group.

  4. Select the Security tab, and then select Single Sign-On (SSO).

  1. On the SSO page, from the SSO Provider list, select Microsoft Entra ID.

  2. Enter your Client ID, Tenant ID, and Client Secret. For more information about these fields, contact your SSO provider.

  3. From the Enforcement list, choose one of the following options:

    • To require all members of the group or subgroups to use SSO to log in, select Full.

    • To require only members of the group or subgroups with specific email addresses to use SSO to log in, select Partial. Then, for each domain that you want to require SSO for, enter the domain in the Domain Name field, and then select Add.

  4. Select Apply.

Overview of Microsoft Graph permissions
https://app-eap.engagevr.io/
Link to access SSO configuration settings