Enable Microsoft authentication
To enable Single Sign-On (SSO) with Microsoft accounts, you must first create a Microsoft Entra ID application registration and client secret and configure API access permissions. You will then use your application’s ID, client secret, and directory ID to link NXLog Platform to Microsoft.
Prerequisites
Before proceeding, ensure you have the following:
-
Configured the NXLog Platform mail server settings.
Create a Microsoft Entra ID application registration
-
Log in to the Microsoft Azure portal and go to App registrations. Use the search bar at the top of the page if you don’t see it on your home page.
-
Click New registration on the top-left or Register an application if this is your first application.
-
Enter an application Name, such as
NXLog Platform
. -
Choose the Supported account types.
-
Specify the Redirect URI
https://auth.nxlog.example.com/landing
and choose the platform typeWeb
. Replacenxlog.example.com
with your NXLog Platform domain. This URL is where Microsoft will redirect users after authorization. -
Click the Register button to finish creating your application. Take note of the Application (client) ID and Directory (tenant) ID; you will need these to link NXLog Platform to Microsoft.
Create a client secret
-
Click Certificates & Secrets under Manage.
-
Click the Client secrets view and then click New client secret.
-
Enter a description and choose an expiration period. Take into consideration that authentication will stop working after the expiration period.
-
Click the Add button.
-
Take note of the secret Value; you will need it to link NXLog Platform to Microsoft.
Link NXLog Platform to Microsoft
-
Log in to NXLog Platform and navigate to Administration > Tenant operations > System settings.
-
Look for the Microsoft section under Third-party authentication settings.
-
Enter your Microsoft Entra application ID, client secret, and directory ID in the Client ID, Secret, and Tenant ID fields.
-
Enable the switch (green). NXLog Platform hides the Secret and Tenant ID and enables SSO authentication with Microsoft.
Invite users to NXLog Platform
Before users can sign in using their Microsoft account, you must invite them to NXLog Platform using their email address, and they must accept the invitation to create an account. See Manage organization users for more information.