Azure

Single sign-on with Azure

Pritunl supports single sign-on with Azure Active Directory. Azure Active Directory Security and Office 365 groups will be matched to existing organizations.

Create Azure Active Directory App

Open the Azure dashboard and go to the App registrations section of the Azure Active Driectory.

23672367

Click New registration and set the Name to Pritunl and Redirect URI to Web. Then set the URL to https://auth.pritunl.com/callback/azure. Once done click Register.

12881288

Open Branding and upload the Pritunl Logo. Set the Home page URL to the URL of your Pritunl server. Then click Save.

15241524

Open the Authentication tab and enable Access tokens under Implicit grant. Then click Save.

21672167

Open API permissions and select Microsoft Graph at the bottom then select Delegated permissions.

12431243

In the Directory section enable Directory.Read.All.

12321232

In the Group section enable Group.Read.All, once done click Add permissions.

12261226

In the User section enable User.Read.

12271227

Open API permissions again and select Microsoft Graph then select Application permissions

12441244

In the Directory section enable Directoy.Read.All, once done click Add permissions.

12351235

After the permissions have been saved click Grant admin consent for Pritunl on the API permissions tab.

21732173

Open Certificates & secrets and click New client secret. Then set the Description to Pritunl and set Expires to Never. Once done click Add and copy the Value in the Client secrets. Save this value for the steps below.

20772077

Configure Pritunl

Open the Overview of the Pritunl app in App registrations. Copy the Directory (tenant) ID, and Application (client) ID for the configuration below.

20082008

Open the Settings in the Pritunl web console and set Single Sign-On to Azure. Copy the Directory ID and Application ID from the steps above. Then copy the Azure key value from the earlier steps into Application Secret. The Default Single Sign-On Organization will be used if none of the Azure groups match an existing Pritunl organization.

898898