Pritunl supports single sign-on with Azure Active Directory. Azure Active Directory Security and Office 365 groups will be matched to existing organizations.
Open the Azure dashboard and go to the App registrations section of the Azure Active Driectory.
Click New application registration and set the Name to
Pritunl and Application type to Web app / API. Then set the Sign-on URL to the login URL of your Pritunl server. Once done click Create.
After the application has been created click Settings on the application then Reply URLs. Replace the existing reply URL with
https://auth.pritunl.com/callback/azure and click Save.
Open Properties and upload the Pritunl Logo. Then click Save.
Open Required permissions and click Windows Azure Active Directory. Then enable Read directory data in Application Permissions. Then enable Read directory data, Read all groups and Sign in and read user profile in Delegated Permissions. Once done click Save.
After the permissions have been saved click Grant permissions on the Required permissions tab.
Open Keys and enter
Pritunl in the Key description field and set Expires to Never expires. Once done click Save and copy the the key value for the steps below.
Open the Properties of the Azure Active Directory and copy the Directory ID for the configuration below.
Open App registrations in the Azure Active Directory then click View all applications and select the Pritunl application. Copy the Application ID for the configuration below.
Open the Settings in the Pritunl web console and set Single Sign-On to Azure. Copy the Directory ID and Application ID from the steps above. Then copy the Azure key value from the earlier steps into Application Secret. The Default Single Sign-On Organization will be used if none of the Azure groups match an existing Pritunl organization.
Updated about a year ago