Enabling OAuth for DDPortal

OAuth is our latest login method for DDPortal, it allows end users to log in using their Office 365 credentials instead of using the Passwordless login or a username and password. 

Once you're done with the set up process, all customers will have the OAuth option available on as long as their ConnectWise or Autotask contact email address matches who they're trying to sign into O365 as (they also have to have an O365 account, or it won't work). The first time your user signs in, they will be asked to grant permissions - and that's it.

This means that as soon as you're done enabling OAuth for DD Portal, it will be enabled for all your clients and no further configuration will be required in the Admin Console on your end.

 

Here is how to set it up - make sure you follow these instructions and use the DD admin credentials for your O365 login:

 

2. When enter Azure Portal, Microsoft will ask you to sign in.

 

3. Once authenticated, you will be taken to the My Applications page. Here, click "New registration"

 

4. Enter a name for your application, select accounts in any organization directory. Then hit Register. There is no need to fill Redirect URI yet.

 

5. After registration, your application is live. Please copy Application (Client) ID and save to a notepad. We will need that later.

 

6. Next, we need to generate a client secret. Head to Certificates & Secrets and hit New client secret. Then give a name to secret with expire time of Never.

 

7. Once Client secret has been created, please make sure copy that to notepad. We will use it in next section.

Secret will only display after creation, if you navigated to other page and come back. You will no longer able to see it.

 

8. Let's head to admin console and add Application ID and Secret. Click on edit application and enter those field we saved inside notepad.

OAuth setup page is located at following URL. Please change host of URL to your DeskDirector server host.
https://{sub-domain}.deskdirector.com/admin/v2/system/authentication/oauth

9. Once application been added. Please copy Redirect URL from admin console's OAuth page. It should be looks like:

https://dd-core.deskdirector.com/api/v2/microsoft/oauth2/{your-application-id}/session

10. Last, we need to setup Redirect URL. Head back to Azure portal and navigate to Authentication. Fill in Redirect URL and tick Access Tokens and ID tokens under Implicit grant. Then save.

11. Now the Login screen in DDPortal will have the added OAuth 'Sign in with Microsoft' option

Branding

You can brand your OAuth application. Navigate to branding, at there you can modify application name, logo, company page etc.

How did we do?

How User Authentication works in DeskDirector

Contact