Integrate Azure Active Directory with the Merchant Center

This guide takes you through the first steps of registering the Merchant Center with Azure Active Directory (Azure AD) before you can configure SSO in the Merchant Center.

Prerequisites

To be able to manage applications, you must have an Azure account with one of these roles: Application administrator, Application developer, or Cloud application administrator. For more information, see Azure AD built-in roles.

Register the Merchant Center in Azure AD

  1. Sign in to the Azure portal.

  2. Search for and select App registrations.

  3. Click New registration and in the Name field, enter the name (to be displayed on Azure) for the application.

  4. Click Register.

  5. Copy the Application (client) ID displayed on the Overview page.

    overview-page

  6. Additionally, click the Endpoints tab and copy the OpenID Connect metadata document URL.

    openid-connect-discovery-endpoint

The copied values are required while configuring SSO in the Merchant Center.

Configure application settings

To configure additional settings such as tokens (for authentication) and redirect URLs for the Merchant Center, do the following:

  1. In the left panel, click Authentication and click Add a platform in the Platform configuration section.

  2. Click Single-page application, and then do the following:

    • In the Redirect URIs field, enter the redirect URI https://mc.{region}.commercetools.com/login/sso/callback.
      For more information on Regions, see Regions.
    • On the Implicit grant and hybrid flows section, select ID tokens (used for implicit and hybrid flows) as the Merchant Center SSO only supports the implicit flow with response_type: id_token.

    application-settings

  3. Click Configure.

Next steps

As the next step, you must configure SSO in the Merchant Center to allow your organization's users to log in to the Merchant Center using SSO.