Single sign-on

For Office 365 / Azure Active Directory users

With the help of the WordPress + Office 365 plugin your Microsoft Office 365 / Azure Active Directory users can sign into your website using their corporate work or school account: No username or password required!

  • The plugin implements the Open Connect ID protocol which is a simple identity layer built on top of the OAuth 2.0 protocol […] It provides information about the end user in the form of an ID token that verifies the identity of the user and provides basic profile information about the user […] continue reading on the Microsoft website.
  • Sensitive information such as a user’s password is never shared with your WordPress website. Instead users that sign in with Microsoft do so in the context of Microsoft’s central authentication portal
    https://login.microsoftonline.com/. Once Microsoft has established the user’s identity it provides information about the end user in the form of the aforementioned ID token.
  • Enterprises that have activate Multifactor Authentication (MFA) or Conditional Access will notice that such policies / restrictions are fully supported by the Open Connect ID and thus by the plugin.
  • The plugin leaves WordPress’ own login capability intact. Therefore both WordPress-only users can sign in when they navigate to the default WordPress login page e.g. /wp-login.php whilst Microsoft Office 365 / Azure AD users are authenticated by the plugin when they request a page or post (depending on the selected authentication scenario).
  • Please note that the plus+professionalpremium and intranet editions of the plugin automatically create new WordPress users to match (new) users that have successfully signed in with Microsoft. The basic edition, however, requires you to do so manually.

Be sure to check out the Getting started documentation https://docs.wpo365.com/article/22-sso .

Compare features

View a chart that compares all features available with all editions.

Leave a Reply

Your email address will not be published. Required fields are marked *