Implementing Seamless SSO Across Multiple Mendix Apps Using Azure AD

0
Hello! I'm currently working on a project where there are multiple Mendix applications that function together to provide a comprehensive user experience. From the user's perspective, these applications appear as different pages on the same site. To enhance the user experience, I am aiming to implement SSO using Microsoft Azure AD, so that once a user logs in to one application, they can seamlessly navigate to the other applications without having to log in again What I am trying to achieve:  Users should only log in once via Azure AD. The authentication should be recognized across all Mendix applications. Users should not have to log in again when switching between apps If anyone has experience with a similar setup or can provide insights and best practices that are recommended, I would appreciate the assistance. 
asked
1 answers
0

You can have a look at the OIDC connector from Mendix. This will allow you to provision users based on their Active Directory groups and provide a seamless experience.

 

Make sure to redirect from the login.html to the relevant endpoint. You might want to do so by enabling anonymous users and making this a dynamic login page, where you can toggle this functionality on/off depending on the environment.

 

Additionally, make sure to authorize from AD groups and not directly in the application, as otherwise authorizations will not transfer over to other applications.

answered