Skip to Content

Changes for page Entra ID SSO

Last modified by Marcus Calverley on 2025/09/01 17:00
From version 3.1
edited by Marcus Calverley
on 2025/09/01 17:00
Change comment: Publication of the new version of the document by xwiki:XWiki.calverley@copopt\.com.
To version 1.1
edited by Marcus Calverley
on 2025/08/06 15:13
Change comment: Publication of the new version of the document by xwiki:XWiki.calverley@copopt\.com.

Summary

Details

Page properties
Content
... ... @@ -1,21 +1,21 @@
1 1  It is possible to enable an integration between your Entra ID tenant (formerly known as Azure AD) and Better Airport. This allows users to login to Better Airport using their normal Microsoft accounts in Entra ID. Furthermore it is possible to setup mapping from groups in Entra ID to roles in Better Airport so users are automatically given the right permissions in Better Airport by just assigning users to those groups.
2 2  
3 -Setting up SSO in Entra ID is a straightforward process. The connections and setup steps are outlined below. For further coordination and review of the role mapping, we can arrange a dedicated meeting between the airport's IT team responsible for user accounts and our AD specialist, based in Copenhagen. Generally we advise following the steps below before such meeting.
3 +Setting up SSO in Entra ID is a straightforward process. The connections and setup are coordinated during a dedicated meeting between the airports IT team responsible for user accounts and our AD specialist, based in Copenhagen. Before the meeting, a few pre-requisites are needed.
4 4  
5 5  = OpenID Connect =
6 6  
7 7  In order for the integration to be established some information needs to be exchanged between us.
8 8  
9 -We will provide you with the following that needs to be entered on your end:
10 -
11 -* Redirect URI
12 -* Application certificate
13 -
14 14  We need the following information to setup the integration on our end:
15 15  
16 16  * OpenID Connect metadata document URL
17 17  * Client id
13 +* Client Secret
18 18  
15 +We will provide you with the following that needs to be entered on your end:
16 +
17 +* Redirect URI
18 +
19 19  In the following section, we explain how to get the necessary information.
20 20  
21 21  == App Registration ==
... ... @@ -29,11 +29,11 @@
29 29  
30 30  [[image:xwiki:Public.Better Airport.Integrations.Entra ID.WebHome@1754484002396-159.png]]
31 31  
32 -The last step is to add the certificate we will provide you under **Certificates & secrets** in the menu:
32 +The last step is to create a Client secret under **Certificates & secrets** in the menu:
33 33  
34 -[[image:xwiki:Public.Better Airport.Integrations.Entra ID.WebHome@1756103378078-189.png]]
34 +[[image:xwiki:Public.Better Airport.Integrations.Entra ID.WebHome@1754484120787-432.png]]
35 35  
36 -Once the certificate has been added, send us the metadata document URL and client ID, so we can complete the registration in Better Airport.
36 +Once the secret has been generated, be sure to copy the **Value **and not the Secret ID, and send this secret to us in a secure manner. You must take note of the secret expiry and set up a process to issue us a new secret before it expires. A new secret can be created at any time and can be active in parallel with older secrets, so a good way to deal with this is to set yourself a calendar reminder 1 month ahead of the expiry and at that time, create a new secret and send this to us so we can begin using the new secret before the old one expires which would cause login to stop working.
37 37  
38 38  == App Roles ==
39 39  
1756103378078-189.png
Author
... ... @@ -1,1 +1,0 @@
1 -XWiki.calverley@copopt\.com
Size
... ... @@ -1,1 +1,0 @@
1 -99.2 KB
Content
1754483118000-702.png
Author
... ... @@ -1,0 +1,1 @@
1 +XWiki.calverley@copopt\.com
Size
... ... @@ -1,0 +1,1 @@
1 +156.9 KB
Content
1754483930823-750.png
Author
... ... @@ -1,0 +1,1 @@
1 +XWiki.calverley@copopt\.com
Size
... ... @@ -1,0 +1,1 @@
1 +42.1 KB
Content
1754484120787-432.png
Author
... ... @@ -1,0 +1,1 @@
1 +XWiki.calverley@copopt\.com
Size
... ... @@ -1,0 +1,1 @@
1 +90.2 KB
Content
1754484188083-262.png
Author
... ... @@ -1,0 +1,1 @@
1 +XWiki.calverley@copopt\.com
Size
... ... @@ -1,0 +1,1 @@
1 +90.2 KB
Content