Azure AD Single Sign-On (SSO)

Azure AD Single Sign-On (SSO)

Streamline access for all of your users. Setup Azure SSO today and use your Microsoft credentials to login on any device, on any supported browser, without risking security.

SSO Webinar

1:50 - SSO Benefits
3:05 - SSO Activation Steps
6:10 - Mapping Azure groups in the admin console
9:08 - Viewing SSO users in the admin console

Step 1 - Create Azure user groups and assign users

There are two user group types - 1) Admin and 2) Portal. Read more on user groups in this article.
  1. Go to and open Groups

  2. Add as many user groups as required and add the relevant users into each group

NB: You must include 'Vibe' or '' in the Group Name.

Step 2: Enable SSO login

Login to your admin console (using an admin level Vibe user account) and:
1. Open Developer Tools and navigate to Modules > Global Module Settings.
2. In the global module settings, select "Login Form."
3. Scroll down to the bottom and tick "Enable Azure AD SSO login."
4. Ensure that "Use Shared Azure AD App" is also ticked.
5. In the "Valid login email domains" textbox, enter the domain name part of the email addresses of the accounts that will be logging in. For example, if your SSO users will have email addresses like, enter "" into the textbox. Click the "Add domain" button to add this as a valid login domain.
6. Click "OK" to save the global settings.

These steps will enable Azure AD SSO login for your application.

Step 3: : Add the redirect URL to the shared Azure AD App

1. Login to your admin console (using an admin-level Vibe user account).
2. Open Developer Tools > Modules > Global Module Settings in the menu.
3. In the global module settings, select Login Form.
4. Click the Add redirect URL to the Azure AD app button.

Step 4: Log in with your Microsoft account

When step 1 and 2 (above) are complete, your Vibe portal and admin console login forms will be replaced with an option to log in with a Microsoft account.
  1. Open your portal or admin console
  2. Click [Log in with your Microsoft account] and login with a Microsoft account that has permission to access all Azure groups.
  3. When you see the "You do not belong to the required Azure groups to be able to log in" message, send the name of your primary Azure 'administrator' group to your support contact (or email and they will perform the initial Azure / group mapping.
When your support contact confirms that the initial grouping is complete, any user in the primary admin group can then login using their Microsoft account and proceed to step 4 below.

Step 5: Map Azure & user groups 

If your existing user groups are ready to map to your Azure user groups, skip to step 3.
Follow these steps to set up new user groups:
  1. Log into your admin console using your Microsoft account
  2. Add new portal user groups and admin roles (groups) as required
  3. While editing your group, use the Azure Group Mapping dropdown to locate and select the related Azure user group.
    1. User Groups

    2. Admin Roles

Managing SSO Users

Add Users

To add a new Vibe portal user, create a new Microsoft account (or choose an existing one) and add the user to the relevant group in

Remove Users

To remove a users access to the portal, deactivate/delete their Microsoft account OR remove them from the Azure user group that is mapped to a user group.
This update will take effect within 30 minutes after which the user will not be able to log in to Vibe.
    • Related Articles

    • Windows Azure: Yammer API

      This article assumes that you are signed up for Windows Azure. If not, please sign up at NB: Microsoft may need to enter a credit card number, but we don't need you to do anything which costs money, so you won't be charged. ...
    • Azure API - SharePoint

      This guide assumes that you've registered for Windows Azure. If you haven't done so already, please complete the sign-up process at Please note that you might be asked to provide your credit card details, but rest assured, ...
    • Windows Azure: Outlook 365 calendar

      This document assumes that you are already signed up for Windows Azure. To sign up, go to . You may be asked to enter a credit card number, but we don't need you to do anything which costs money, so you won't ...
    • Outlook (Office 365)

      Use Outlook (Office 365) to automatically present your activities, events or meeting room bookings on your workplace digital signage channel. Step 1: Azure Active Directory app setup App Registration If you have an existing Azure app, use the steps ...
    • Workplace Integration

      Step 1: Create a custom Workplace App connects to Workplace using an 'App' and 'Access token'. To generate the Custom App and Access token (and allow access to all or specified group content on Workplace), please follow the steps below: ...