Microsoft Social Identity Provider Configuration Details
You can set up the Microsoft social identity provider through the Admin UI or in a conf/identityProvider-microsoft.json file. IDM generates the identityProvider-microsoft.json file when you configure and enable this social identity provider in the Admin UI. Alternatively, you can create the file manually.
The following table includes the information shown in the Admin UI Microsoft Provider pop-up window, along with associated information in the identityProvider-microsoft.json file:
Microsoft Social Identity Provider Configuration Properties
| Property (UI) | Property (JSON file) | Description |
|---|---|---|
| Application ID | clientId | The client identifier for your Microsoft App |
| Application Secret | clientSecret | Used with the Application ID; shown as application password |
| Scope | scope | OAuth 2 scopes; for more information, see Microsoft Graph Permission Scopes. |
| Authorization Endpoint | authorizationEndpoint | Typically https://login.microsoftonline.com/common/oauth2/v2.0/authorize |
| Token Endpoint | tokenEndpoint | Endpoint that receives a one-time authorization code and returns an access token; typically https://login.microsoftonline.com/common/oauth2/v2.0/token |
| User Info Endpoint | userInfoEndpoint | Endpoint that transmits scope-related fields; typically https://graph.microsoft.com/v1.0/me |
| Not in the Admin UI | name | Name of the social identity provider |
| Not in the Admin UI | type | Authentication module |
| Not in the Admin UI | authenticationId | Authentication identifier, as returned from the User Info Endpoint for each social identity provider |
| Not in the Admin UI | propertyMap | Mapping between Microsoft and IDM |
For information on social identity provider buttons and badges, see "Social Identity Provider Button and Badge Properties".