Skip to main content

Setup auth provider

warning

It is important to follow all the steps in this guide to ensure a successful configuration of Entra ID authentication.

If you encounter any issues, please contact support.

Portal includes a built-in Microsoft authentication provider that uses Microsoft Azure Entra ID OAuth for user authentication. To enable Entra ID authentication for your Portal instance, follow these steps.

Create an Azure App Registration

Follow the guidelines in Configure App Registration on Azure and the Outbound Network Access to create a new App Registration in Azure named Spotify Portal or similar. When specifying the Redirect URI, use:

https://<YOUR_COMPANY>.spotifyportal.com/api/auth/microsoft/handler/frame

Configure the Authentication Provider in Portal

  1. Open Config Manager in Portal and navigate to the Auth plugin.
  2. Scroll to auth.providers.microsoft
  3. Add a new configuration entry named production
  4. Enter the following details from your Azure App Registration:
    • clientId
    • clientSecret
    • tenantId

Add app credentials

  1. Set userIdMatchingUserEntityAnnotation as the sign-in resolver.

Add sign in resolver

  1. Click Save changes.

Next Steps

Your Portal instance is now set up to authenticate users via Microsoft Entra ID. The next step is to populate your Catalog with your organization's user and team data from Entra ID so that users can gain access within Portal.

Continue to the next section to learn how to configure Microsoft Graph and complete this integration.