Juniper Websites: How do I set up single sign-on (SSO) for my website (Microsoft Azure Active Directory)?

Overview

This article explains setting up single sign-on (SSO) for your school website. Enabling single sign-on allows users to log into your Juniper Website with their Microsoft credentials. The configuration involves two steps, each explained below. The first step involves some configuration activities in Microsoft Azure Active Directory (AD). The second step involves configuration in Juniper Websites. 

Prerequisites

  1. You must be an administrator in Juniper Websites.
  2. You must have the appropriate conditions to configure Google Workspace.

Instructions

    1. Log in to your Microsoft Azure account.
    2. Select Azure Active Directory.
    3. Select App registrations.
    4. Select New registration to create the app instance:
      SSO01.png
    5. Enter a Name.
    6. Select the Supported account types.
    7. Add a Redirect URI. This should be your website address followed by /admin/login/sso/oauth/return.asp. For example, to set up SSO for the URL https://www.junipereducation.org enter https://www.junipereducation.org/admin/login/sso/oauth/return.asp  SSO02.png
    8. In the App Registration, select Authentication.
    9. Under Advanced settings enter a logout URL. This should be your website address followed by /ssosp/logout. For example, to set up SSO for the URL https://www.junipereducation.org enter https://www.junipereducation.org/ssosp/logout.
    10. Select Save.SSO03.png
    11. To allow the Juniper Websites CMS access to Azure AD, you will need three pieces of information from Azure: Application (client) IDDirectory (tenant) ID and Client Secret. Two of these are found in the Overview section:SSO04.png

      The third is found under Certificates and Secrets. To create a new secret for use on the website, select New client secret:SSO05.png
    12. After noting your details log into Juniper Websites CMS as an administrator.
    1. Select Settings from the Website tab.
    2. Select Website Settings.
    3. Scroll down and select Single Sign-on:
    4. Select Azure AD for What single sign on provider should the website use?.
    5. Enter the Client ID, Tenant ID and Client Secret from Azure.
    6. Optionally, add your Domain for logging in.
    7. When prompted select Authorise access to Azure AD and follow the authorisation process.
    8. After authorisation use Add/Remove Links to align your Azure Active Directory groups to the Security Roles within your Juniper Websites CMS.
    9. You can Enable Single Sign-On, choosing how you will allow users to log in to the website.
    10. Select Save to complete the set-up.

Outcome

Single sign-on is enabled. Your users will be able to use their Google credentials to get access to Juniper Websites CMS.

Related information

Updated

Was this article helpful?

0 out of 0 found this helpful

Have more questions? Submit a request