Sitefinity AzureAD Integration with OpenID Connect

Enable seamless SSO (Single Sign-On) with Microsoft Azure AD using OpenID Connect in your Sitefinity instance.

☁️ Azure AD Setup

1. Go to Azure Active Directory → App registrations → New registration.
2. Enter a name for your application (you can skip Redirect URI for now), then click Register.
3. Navigate to the Authentication tab → Add a platform → choose Web.
4. Under Redirect URIs, enter: http://<your-sitefinity-instance>/Sitefinity/Authenticate/OpenID/signin-custom
5. Enable ID tokens under “Authorization endpoint”.

🏗️ Sitefinity Setup

1. Start or run your Sitefinity instance.
2. Go to the backend → Administration → Advanced →
   Authentication → SecurityTokenService →
   AuthenticationProviders → OpenIDConnect.
3. Apply the following configuration:

4. Restart your Sitefinity instance.

✅ Verification Steps

1. Visit:
   https://<your-sitefinity-instance>/Sitefinity → Click Azure Login
   

2. Accept the permissions prompt (shown on first login).
   

3. Enter your Azure AD credentials — you’ll be redirected back to the dashboard.
   
   

4. Check under Administration → Users – you’ll notice both a default and an Azure-created user with the same email.
   

🎉 It’s working!

🔧 Optional Enhancements

• Handle Claims / Provisioning: Intercept Azure AD callback to auto-create and map user profiles.
• Hide default login:

1. Create /Content/Pages/login.html
2. Comment out unnecessary blocks (see example: login.html)
3. Restart Sitefinity
4. Optionally add a script to auto-redirect to Azure login on page load

📚 References

• Sitefinity KB – Configure with Azure AD B2C
• Sitefinity Docs – Configure OpenID Connect Provider
• How to hide identity provider buttons