Document version

Version	Date	Auteur	Description
v1.0	05/04/2024	Florent Martinier	Initial document
v1.1	18/06/2025	Gautier Levert	Change configuration screenshot

Prerequisite

Have administrator rights on Azure

Creating an Azure application

Go to Microsoft Entra ID > Application Registration > New Registration. Complete the form as below (the name of the application can be adapted as appropriate):

Redirect URI : [https://login.sopht.com/realms/sopht/broker/<identity_provider_alias>/endpoint](https://login.sopht.com/realms/sopht/broker/<identity_provider_alias>/endpoint) (real value given by Sopht)

Once the application is created, go to “Certificates & secrets”, and create a secret there.

<aside> ⚠️

Be sure to note the value of secret.

</aside>

Information to provide to Sopht

Tenant ID : ID of the directory containing the previously created application
Client ID: ID of the previously created application (present in the application overview)
Client Secret : Secret of the created application
Email domains: the list of all domains on which your SSO has addresses (ex: aaaa.com, aaaa.fr, aaaa-it.com)

<aside> 💡

It is also possible to authorize all the sub-domains of a domain on demand; by default, this behavior is disabled.

</aside>