Hi all, I'm working on an Azure AD SSO requirement and I have a few questions: - The docs suggest using

AddMicrosoftAccount

(https://docs.umbraco.com/umbraco-cms/v/10.latest-lts/reference/security/authenticate-with-active-directory#azure-a-d-authentication-for-users). Does this use OAuth or SAML? (there is reference to OAuth endpoints) - The docs also suggest that the client secret is required but someone has suggested this isn't necessary for OAuth, but I'm guessing it is necessary? - Is this the preferred way to set up SSO or should I go down an OpenID/OAuth config route? Any guidance/questions is very welcome!

didn't use that article, was lazy and used https://github.com/Gibe/Umbraco.Community.AzureSSO but I can confirm it does require the

clientSecret

, seemed also to work for me for TokenId or AccessToken this was invaluable! https://github.com/Gibe/Umbraco.Community.AzureSSO/blob/main/AzureADSetup.md

Thanks @Mike Chambers, I'll have a gander! I think we're all looking for an easy solution 😅

@Harry Gordon @Mike Chambers Do you know if the Umbraco.Community.AzureSSO is V12 ready? Im getting an error - Could not load type 'Microsoft.Identity.Web.MicrosoftIdentityOptions' from assembly 'Microsoft.Identity.Web, Version=2.6.1.0 have either you ran into that using the same package?

I didn't though seem to remember think the dependency is Microsoft.Identity.Web 1.25.10 from AzureSS0? though I did also have 2.13.0 for investigating access_tokens for msgraph integration working..

I cloned the repo, removed the Microsoft.Identity.Web.MicrosoftGraph dependecy and added in Microsoft.Identity.Web 2.6.1 and works perfectly now 🙂

I did open an issue re dependencies.. https://github.com/Gibe/Umbraco.Community.AzureSSO/issues/14 😉