Skip to main content

Configure Azure AD

Set up Microsoft Entra ID (Azure AD) as your identity provider.

Before you start, find your callback URL on the Configure SSO page: {gatewayUrl}/api/auth/callback/azure-ad.

Register an app in Azure

  1. In the Microsoft Entra admin center (or the Azure Portal), go to App registrations → New registration
  2. Enter a name (e.g. "Willow Integration")
  3. Under Supported account types, select Accounts in this organizational directory only (Single tenant)
  4. Add a Redirect URI (web): {gatewayUrl}/api/auth/callback/azure-ad
  5. Select Register, then copy the Application (client) ID and Directory (tenant) ID
  6. Go to Certificates & secrets and create a Client secret and copy the value immediately

For more details, see Microsoft's guide to registering an application in the Microsoft identity platform.

Finish in Willow

  1. Go to Admin → Settings → Authentication Settings
  2. Select Provider: Azure
  3. Enter the Client ID, Client Secret, and tenantId
  4. Select Save Changes
Azure AD SSO provider configured in Willow Authentication Settings
On this page