--- title: "Integrating Azure AD" slug: "integrating-azure-ad" updated: 2022-12-02T09:51:46Z published: 2022-12-02T09:51:46Z --- > ## Documentation Index > Fetch the complete documentation index at: https://help.nexudus.com/llms.txt > Use this file to discover all available pages before exploring further. # Integrating Azure AD ## What You Need to Integrate {{variable.AzureAD}} All you need is a Microsoft Azure account. ## Step 1. Get Your Redirect URL The first step of the integration process is to find and copy your redirect URL on the {{variable.AdminPanel}}. 1. {{snippet.FirstStepProcedure}} 2. {{snippet.AzureAD_Path}} 3. Enable the **Azure Active Directory** toggle. 4. Copy the **Redirect URI** and save it somewhere. ![AzureAD_URIExample.png](https://cdn.document360.io/4f9a66c7-3dbb-4052-97d8-5439302e1512/Images/Documentation/AzureAD_URIExample.png){height="" width=""} ## Step 2. Register your Application in {{variable.AzureAD}} The second step of the integration process is to create an application dedicated to Nexudus user login in your Azure account. 1. Open your Azure portal at [portal.azure.com](https://portal.azure.com/){target="_blank"}. 2. Select the **Azure Active Directory** module. ![image.png](https://cdn.document360.io/4f9a66c7-3dbb-4052-97d8-5439302e1512/Images/Documentation/image%28528%29.png){height="" width="100"} 3. Click ** App registrations** in the navigation menu and then click **+ New Registration**. ![image.png](https://cdn.document360.io/4f9a66c7-3dbb-4052-97d8-5439302e1512/Images/Documentation/image%28529%29.png){height="" width="650"} 4. Name your application. *We recommend using a clear name such as **Nexudus Login + Your location/network name**. For example, **Nexudus Login Kalkio Spaces**.* :::(Info) (Running multiple locations?) You only need to create one application for your network as long as all your users log in against the same Azure Directory. ::: 4. Add the **Return URL** you've saved during Step 1 and complete the registration form as follows: ![image.png](https://cdn.document360.io/4f9a66c7-3dbb-4052-97d8-5439302e1512/Images/Documentation/image%28531%29.png){height="" width="650"} 5. Once you've created the application, copy the **Application (client) ID** and the **Directory (tenant) ID** and save them somewhere. ![image.png](https://cdn.document360.io/4f9a66c7-3dbb-4052-97d8-5439302e1512/Images/Documentation/image%28532%29.png){height="" width="650"} 6. Click Certificates and Secrets in the navigation menu and then click on the **Client Secret** tab. ![image.png](https://cdn.document360.io/4f9a66c7-3dbb-4052-97d8-5439302e1512/Images/Documentation/image%28533%29.png){height="" width="650"} 7. Click **New client secret**. 8. Name your secret and set an expiration period. :::(Warning) (You need to create a new secret once this one expires and update your Nexudus settings accordingly.) Azure will send you a reminder before the secret expires, but we strongly recommend you to also set your own reminder in your calendar. **If the secret expires before your update, your users won't be able to log in to the Members Portal.** ::: 9. Copy **Value** of your client secret (not the ID) and save it somewhere. *You will need this value in the next step.* :::(error) (Treat your secret as you would any other password and make sure you save it somewhere safe.) ::: ## Step 3. Enabling the {{variable.AzureAD}} Integration in Nexudus The last step of the integration is enabling {{variable.AzureAD}} {{variable.OnTheAdminPanel}}. Make sure you have the following details from previous steps handy to complete the process: * Your {{variable.AzureAD}} **Directory (tenant)** and **Application (client)** IDs * Your {{variable.AzureAD}} **client secret** 1. {{snippet.FirstStepProcedure}} 2. {{snippet.AzureAD_Path}} 3. Enable the **Azure Active Directory integration** toggle. 4. Enable the **Create new users in Nexudus if they don't exist toggle** if you want to automatically register users without an existing customer account as contacts in Nexudus. 5. Enable the **Prevent users from using their Nexudus password to log in** if you want customers to only be able to use Azure AD to log in to their account. :::(Info) (Enabling this option will automatically redirect users to Azure AD when they click on your Members Portal login page.) ::: 7. Add your {{variable.AzureAD}} **Directory (tenant) ID** in the **Tenant ID** field. 8. Add your {{variable.AzureAD}} **Application (client) ID** in the **Client ID** field. 9. Add your {{variable.AzureAD}} application's client secret in the **Client Secret** field. 10. Add the text you want to display to customers on the Members Portal in the **Sign in button label**. *The default text is **Sign in with Corporate Account**.* 10. {{snippet.Save_Changes}} All set! You've completed your {{variable.AzureAD}} integration. We recommend testing the integration with a dummy customer account to ensure everything is working properly.