Skip to content

Configuring Azure App Registration for use with the Symbio AuthService

Please follow the instructions in Configuring Azure AD for use with Symbio Apps but adjust the Redirect URI as follows:

https://auth.symbio.cloud/signin-<customer>-aad

Example: https://auth.symbio.cloud/signin-symbio-aad

Once registered, adjust the Front-channel logout URL as follows:

https://auth.symbio.cloud/signout-<customer>-aad

Example: https://auth.symbio.cloud/signout-symbio-aad

Enable the issuing of Access tokens and ID tokens.

Claims

The following claims are required and must be sent by the external IdP.

  • email (contains the email address of the user)
  • given_name (contains the given, e.g. first name of the user)
  • family_name (contains the family, e.g. last name of the user)

If the external IdP uses different claim types, make sure to provide a set of claim types (names) that contain the required data. Deviating claim types can then be mapped to the corresponding required claim types in the Symbio AuthService.