Setup Single Sign On (SSO) with MS Entra
Before starting this process please contact Glide support and we will arrange a secure upload link for you to provide the requested details.
- Go to https://portal.azure.com
- Click 'Microsoft Entra ID'
- Click 'App registrations'
- Click 'New registration'
- Name: Enter 'Glide'
- Supported account types: Choose "Accounts in this organizational directory only" (Single Tenant)
- Choose a sub-domain. For example, if you firm were called 'Super Accountants Limited' then you might go for sal - this can not include any period characters.
- Please confirm your requested choice of subdomain with us before proceeding.
- Redirect URI: Enter 'https://[your sub-domain].glideworkpm.com/auth/az/callback'
- Click 'Register'
- Navigate to the newly created application which should be listed
- Note down the 'Application (client) ID' value.
- Note down the 'Directory (tenant) ID' value.
- Navigate to 'Certificates & secrets'
- Click 'Client secrets'
- Click 'New client secret'
- Enter 'ClientSecret' as the description and copy the value.
- Send the Application (client) ID, Directory (tennant) ID and ClientSecret to us.
- Navigate to 'Authentication'
- Set 'Front-channel logout URL' to 'https://[your sub-domain].glideworkpm.com/logout'
- Select 'ID tokens' under Implicit grant and hybrid flows
- Navigate to 'Branding & properties'
- Set 'Home page URL' to 'https://www.glideworkflow.com'
- Set 'Publisher domain' to 'https://[your sub-domain].glideworkpm.com'.
- Send us the JSON data needed to be hosted for validation. (Note: this is a one time verification step and we then delete the file). We will confirm when you can proceed to run the verification step.
- Click 'Home' in the top left of the screen
- Click 'Microsoft Entra ID'
- Click 'Enterprise applications'
- Click 'Glide' on the list of applications
- Click 'Properties'
- Set 'Enabled for users to sign-in' to Yes
- Set 'Assignment required' to Yes
- Set 'Visible to users' to Yes
The redirect URI limits the SSO to just the specific instance of Glide that we will configure for you. Should you wish to ever change the sub-domain that you access Glide via, then this would
need to be updated.
We will then configure your Glide instance to support SSO via Microsoft Entra ID
(formerly Azure AD).
Further steps will be required to setup users, instructions will follow once we have
setup your instance.