Navigate 360 SSO (Auth0) Setup Documentation for School Districts

• Introduction
• A. School District Steps - Azure Setup
• B. Navigate360 Steps - Auth0
• C. School District Steps - VMS Configuration

Introduction 

The purpose of this page is to detail the needed steps by the School District to set up SSO. Each section must be followed in order, first by the school district in Section A, then by Navigate360 in Section B, and then finally by the school district in Section C.

School District Steps - Azure Setup

To fill in the basic information section for the connection between Auth0 and Microsoft Azure AD, you'll need to gather and send specific details (Client ID, Client Secret, and Azure AD Domain) from your Azure AD portal. Please follow the below steps to complete this task. 

1). Log in to the Azure Portal: Open the Azure Portal and log in with your account.

2). Navigate to Azure AD: From the left-hand navigation pane, select “Azure Active Directory.”

3). Go to App Registrations: Select "App registrations" from the menu.

4). Create or Select an Application: If you have an existing application that you want to use, click on its name. Otherwise, click "New Registration" to create a new application.

5). Copy the Client ID: In the "Overview" section, you'll find the Application (client) ID. Copy this value.

6). Create a Client Secret: Go to the "Certificates & secrets" section, then click on "New client secret." Enter a description and select an expiration period, then click "Add." Copy the value of the client secret as it won't be visible again after you leave this page.

7). Find Your Azure AD Domain: Go back to the "Azure Active Directory" overview page. You should see your primary domain listed under the "Custom domain names" section. It will typically be in the format “yourdomain.onmicrosoft.com.”

8). Send the Client ID, Client Secret, and Azure AD Domain to [Navigate360 Contact].

9). A Navigate360 Implementation Specialist will then gather the necessary items for you prior to the VMS Configuration. 

School District Steps - VMS Configuration

Now that both Azure and Auth0 setup is complete, the last steps are to configure and confirm the SSO setup in VMS. Please follow the below steps to complete this task. 

Configure the group name to the permission level

1). Find your group names within your Azure AD, you’ll be adding these to your Visitor Management System.

2). You’ll link the group names created in Azure to the SSO Permission Mapping page in VMS.

3). Click on the Add Groups button.

4). Choose the method you want to use.

5). Enter the Group name (make sure it matches exactly how it’s listed in Azure).

6). Press enter after typing a group name, you can add multiple, then select the permission level this group(s) will have.

7). The Group name and the permission are now saved in the group name table.

Testing the SSO

1). Log into VMS to test the SSO authentication. Click on the Sign in with SSO, note that you should have an email that has access to the same group name you configured into VMS.

2). A popup will appear and you may enter the email you have access to.

3). You will notice text appear (SINGLE SIGN-ON ENABLED), when pressing on login you will be redirected to the Microsoft account authentication. Once complete, the popup will be closed and the system will redirect you to the main page.

That’s it! You completed the Azure SSO configuration and confirmed access to the Visitor Management System.