Organisation and GDPR
Single Single On (SSO) with Azure
SSO enables your users to login into Legalesign from an external authentication system.
This article is about how to login using Azure Active Directory. You will need to be subscribed to a plan in Legalesign that enables SSO (contact your account manager).
It's easy to set up Azure SSO. First, create a new application in your Azure Portal, then send us the application details.
How to set up Azure SSO with Legalesign:
Go to your Azure portal and click through to Azure Active Directory.
In the left hand column click on App Registrations, then 'New registration'.
Provide a name - 'Legalesign' - and select the account types that you want to have access to the SSO, ignore 'Redirect URI' and click 'Register'.
The Application will be created and you will be shown a page with your new application IDs.
You should be on the 'Overview' tab. Click 'Add a Redirect URI' which is in the central upper pane.
Click 'Add a platform'. Select 'Web'. Add this value for the Redirect URI of the application: https://app1-legalesign.auth.eu-west-2.amazoncognito.com/oauth2/idpresponse
Enter this value for the logged out uri: https://app1.legalesign.com/auth/logged-out?t=1
Select both checkboxes for Access Tokens and ID tokens.
Press 'Configure'.
Click 'API permissions' in the left-hand menu. 'User.Read' should already be selected. Click to add a permission, select Microsoft graph, then 'Delegated permissions'. You should see a section called 'OpenId permissions' appear. Tick to select 'email', 'openid' and 'profile'. Then 'Add permissions'.
Finally, click 'Certificates & secrets' from the left-hand menu. Create a secret and save it.
Send support@legalesign.com these 3 details:
the Application (client) ID,
the Directory (tenant) ID,
the secret value.
Right click and save the logo below, then click on 'Branding & Properties'. Select the image in 'Upload new logo', press 'Save' in the footer.
We will come back to you when the system is enabled and provide a login URL.
To control access through your new application, and everything else, go to 'Enterprise Apps' in the Azure portal and search for 'Legalesign' (or the name you just gave the application).
For more information about setting up a login from Office click here.