Skip to main content

Azure Active Directory Single Sign-On

Product & Engineering Support
Updated

Inspect Point supports Azure AD (Active Directory) Single Sign On (SSO). This allows you to sign in to Inspect Point on both the backend and on the iPad with your own Active Directory credentials instead of using passwords stored in Inspect Point.  

In order to set up Azure AD you must set up an application within your Azure Active Directory tenant and supply Inspect Point the following pieces of information:

  • Application (Client) ID
  • Directory (Tenant) ID

We currently only offer a hybrid approach allowing both password and Azure AD authentication. In a future release we will enable the disabling of password related authentication. 

Users & Emails

In order for Azure Active Directory to work, you will need to ensure that your backend users and technicians email addresses are in the system and match to their users UPN and/or Email stored in Azure Active directory. The Azure AD integration works for both native users and guest accounts added through Azure AD.

Configure your Azure Active Directory Tenant

Microsoft has good documentation on registering a new application in Azure Active Directory.
https://docs.microsoft.com/en-us/azure/active-directory/develop/quickstart-register-app

 

Add Redirect URLs

You will need to add a Redirect URI allowing your Inspect Point site to use this application.  This would be your Inspect Point URL.  

** If you have more than one tenant set up in Inspect Point, all of the urls must be added.

Below is an example

https://yoursubdomain.inspectpoint.com/users/sign_in

 

Enable Grant and Hybrid Flows

On the same Authentication page where the Redirect URL’s can be found, you must allow implicit flow. Please check off both check-boxes which can be seen in the screenshot below.

azure_1.png

Allow iOS Redirect URI

In addition to the URLs above you need to specifically grant access to the Inspect Point iOS application in order to enable iOS.

The Inspect Point Bundle ID is: com.inspectpoint.InspectPoint

The result should look like this:

azure_2.png

Send Information to Inspect Point

Once you complete the above steps, please contact support through https://support.inspectpoint.com and supply the following information in your ticket.

  • Application (Client) ID
  • Directory (Tenant) ID

Azure AD Enabled

Once we have your information we can configure your tenant(s) to be Azure AD enabled. You will have a new button on your login page.

azure_3.png

iOS Support

We also support Azure AD login from the iOS devices if the technician has an email address that matches their Azure AD UPN or Email.

azure_4.jpeg

Need help? Contact our Support Team at support@inspectpoint.com or submit a support ticket through the "Submit a request" link above

Related articles

Comments

0 comments

Article is closed for comments.

Powered by Zendesk