The following steps will integrate Microsoft SSO using the built in Azure Entra ID identity provider in Pangolin.

Creating an Azure Entra ID IdP in Pangolin

In Pangolin, go to “Identity Providers” and click “Add Indentity Provider”. Select the Azure Entra ID provider option.
In the OAuth2/OIDC Configuration, you’ll need the following fields:
Client ID
string
required
The application (client) ID from the “Overview” section of your app registration
Client Secret
string
required
The client secret value from the “Certificates and secrets” section of your app registration

Token Configuration

When you’re done, click “Create Identity Provider”. Then, copy the Redirect URL in the “General” tab as you will now need this for your app registration.

Returning to Google Developers Console

Lastly, you’ll need to return to your app registration in order to add the redirect URI created by Pangolin. On the “Overview” tab, click “Add a Redirect URI”. The click “Add a platform”, and select “Web”. Here, you can add the redirect URL from Pangolin and click “Configure”. Your configuration should now be complete. You’ll now need to add an external user to Pangolin, or if you have “Auto Provision Users” enabled, you can now log in using Google SSO.