Setting up SSO for Microsoft AAD

How to setup SSO for Azure


  1. Create a new application (under App Registrations, NOT Enterprise applications).

  1. Set the redirect URL to

  1. Make a note of the app id.

  1. Create a new secret.

You may set the period to anything up to 2 years. After this period, you will have to provide Kleene with a new secret so that your SSO integration is maintained.

  1. Make a note of the secret; note that this is visible only after creation.

Auth0 supports only client secrets, no certificates.

Make sure that:

  1. Users have emails set in their profiles, not just UPN.
  2. User.Read under Microsoft Graph is present.

For the integration Kleene needs:

  • Your Azure domain (e.g. ours is
  • App ID (from the steps above)
  • Client secret (from the steps above)