GeneXus Community Wiki

TBWelcomeLoginRegister

Change Password

Search

Recents

GeneXus Access Manager (GAM)

Page Id

Built-in Security Module
Authentication
- Authentication Scenarios
- Native Mobile Authentication
- Authentication flow with an external OAuth2.0 provider
- Authentication Types
  - Local
  - Built-in
    - Apple
    - Facebook
    - Google
    - Twitter
    - WeChat
    - Other remote GAM
      - GAMRemote
        
        Server Configuration
        
        Client Configuration
      - GAMRemoteREST
        
        Client side configuration
        
        Server side configuration
  - OAuth 2.0
    - How to configure
    - Samples
  - OpenID Connect
    - How to configure
    - Samples
      - HowTo: Authenticate to Azure AD using OpenID Connect with GAM
      - HowTo: Authenticate to Google using OpenID Connect with GAM
  - SAML 2.0
    - How to configure
    - Generating certificates
    - Samples
      - SAP
      - Agesic
      - Okta
      - Azure
  - OTP - One Time Password
    - How to configure
  - 2FA - Two Factor Authentication
    - How to configure
      - Two Factor Authentication
      - Two factor Authentication for mobile
  - External
  - Custom
    - Samples
      - LDAP
      - Windows
- Impersonation
- SSO
  - Single Sign On (SSO)
  - Logout options for Single Sign On
Authorization
- Authorization Scenarios
  - Roles
    - Main Role of a user
  - Permissions
Users
Repository
Sessions
Security Policies
Events subscription
Deployment
Services
Advanced
Compatibility
Troubleshooting
Media
- GeneXus Access Manager in the media
Hardening of GeneXus Systems and Deployments
- Good practices for secure development
- Configuration for secure deployment

HowTo: Configure OAuth 2.0 authentication with Azure AD

Official Content

This documentation is valid for:

Note: As of July 2023, Microsoft changed the name of its Azure Active Directory product to Microsoft Entra ID.

This article explains how to configure OAuth 2.0 authentication with Azure AD. In the OAuth 2.0 authentication type, you can find a new option called IDP that lets you switch from default to Azure. If you select Azure, all the fields will be filled automatically and you will only have to configure the following properties:

Client ID:     client_id         Value: <clientid>
Client Secret: client_secret     Value: <clientsecret>
Redirect URL:  redirect_uri      Value: https://<server>/webapp

Note: To learn where you can find these parameters, please read the Azure AD article.

Authorization Tab

In the link https://login.microsoftonline.com/{tenat}/oauth2/v2.0/authorize you must change {tenat} with your tenat.

See yours in the following panel.

Availability

Since GeneXus 18 Upgrade 3.

See Also

HowTo: Authenticate to Azure Active Directory using GAM

Page Id

Backlinks

Forward links

More from vdeambrosi

—

CREATED: 10 APRIL 2023 05:23 PM - UPDATED: 11 SEPTEMBER 2023 01:13 PM BY VDEAMBROSI