Skip to main content
Vuelio SSO - Client Setup
Stefan avatar
Written by Stefan
Updated over 3 months ago

Here are the details we require to integrate your SSO with Vuelio.

  1. Application ID:

  2. Secret Expiry:

  3. Secret Value:

  4. PrimaryDomain:

  5. Test user email address: (preferably the IT/network admin performing this setup)

Please also find our video & text guides below that will provide directions within Azure AD to obtain this info. If you have any questions or issues along the way please let us know.

Video Tutorial

Connect your Company Azure AD with Vuelio to enable SSO (Video Guide)

Text Walkthrough

The below is a general guide to enabling auth with Azure tenant etc.

Authentication systems and types will differ per client, so some additional steps may be required following the below.

Standard Setup

1. Log onto the Azure Portal with an MA account.

2. Open App Registrations.

3. Create new app registration.

4. Enter the name Vuelio SSO App.

5. From the dropdown select "web" and enter

https://vuelioauthprod.b2clogin.com/vuelioauthprod.onmicrosoft.com/oauth2/authresp

6. Click next to create.

7. Once created, note Application ID.

8. Click "Certificates and secrets", create new client secret called "Vuelio SSO Secret".

9. Set expiry date to 24 months.

10. Note the specific expiry date and value.

11. Open API permissions

12. Select Microsoft Graph

13. Grant delegated permissions of openID and profile

14. Grant admin consent to the permissions

15. Go out of the App registration and then click on custom domains in the left navigation from AAD, note the Primary domain

16. Open a browser and navigate to the following URL, replacing <Primary domain> with the domain you noted in step 15 https://login.microsoftonline.com/<Primary domain>/v2.0/.well-known/openid-configuration

A response similar to the image below will appear:

17. Check for the following values

  1. response_types_supported has id_token

  2. Claims_supported has preferred_username

If either of these are missing you will need to do the following extra setup...

Extra Setup

Extra 1. Click on App Registrations in the left navigation from AAD, then click on the App Registration called Vuelio SSO App that you created in step 6]

response_types_supported Is Missing id_token

Extra 2. Click on Authentication in the left navigation

Extra 3. Under the ‘Implicit grant and hybrid flows’ heading tick the ‘ID tokens (used for implicit and hybrid flows)’ checkbox

Extra 4. Click the Save button

claims_supported Is Missing preferred_username

Extra 5. Navigate to Token Configuration

Extra 6. Add Optional Claim

Extra 7. Select token type: ID

Extra 8. Select: preferred_username

Extra 9. Add

Extra 10. Repeat for 'upn' optional claim.

Complete Extra Setup

Repeat steps 16 & 17 to validate extra setup is successful.

Once we have these details, please allow a couple of days for us to configure and provide a test login for you to try, before eventually going live (on a preferred date) and enforcing SSO for all of your Vuelio users.

Please provide the email address of the test user - this cannot be an email address already registered to use the Vuelio application. Preferably your IT or network admin performing this setup.

Australian-based clients

N.B Australian-based clients should replace URL in step #5 with:

https://vuelioauthprodaustralia.b2clogin.com/vuelioauthprodaustralia.onmicrosoft.com/oauth2/authresp

Did this answer your question?