Microsoft Entra ID
Setup Single Sign-On and enable members to login with their company account.
Microsoft Entra ID (formerly known as Azure Active Directory) is a popular identity provider that can be used to setup Single Sign-On for your organization in Tempest.
Step-by-step
Below you will find detailed instructions on how to configure Microsoft Entra ID for Tempest.
These instructions assume you already have a Directory in your Microsoft Entra ID account.
Go to the Microsoft Entra ID portal and follow Identity > Applications > Enterprise applications.
Click +New application.
Click +Create your own application.
Type in a relevant name, select Non-gallery application, and click Create.
Follow Identity > Applications > App registrations, and click All applications.
Click on the application you created.
Click Add a Redirect URI.
In Platform configurations click Add a platform.
Select Web.
Add the Redirect URL from Tempest and click Configure.
Click Certificates & secrets and click +New client secret.
Type in a relevant name, select desired expiration time, and click Add.
Copy secret Value and paste it into Tempest.
Copy the Client ID and Tenant ID and paste it into Tempest.
Additional permissions are needed to support Directory Sync functionality.
Go to API Permissions and grant access to Directory.Read.All and User.Read.All for your application.