.png?height=120&name=full%20logo%20-%20blue%20(1).png)
-
1. Click sign in with Azure AD on https://<company>.bucketlist.org
-
2. On the https://login.microsoftonline.com/ page, replace the URL path /organizations/oauth2/v2.0/authorize with /common/adminconsent
-
3. Login using an Azure AD Admin account
-
4. This will show a "Permissions requested". Accept it
-
5. You will be redirected back to Bucketlist Rewards with a social login failed error
-
6. You can ignore it. Now all users in the Azure AD can login using their Azure AD.
-
7. This is one time operation needed to be done using Azure AD Admin credentials.
NOTE: Once Azure AD SSO is configured and a user logs in, we first check for the attribute "mail." If this attribute is not available we fallback to the attribute "User Principal Name."