To enable SSO for MessageWatcher using Microsoft 365 Azure Active Directory, follow these steps:

To get started, you need the following items:
• An Azure AD subscription. If you don’t have a subscription, you can get a free account.
• An MessageWatcher subscription.

Information about MessageWatcher SSO:

Adding the “MessageWatcher SSO” application to your Microsoft 365 instance will allow authorized users to logon to the MessageWatcher compliance web portal using their Microsoft 365 account enabling single sign-on.

The MessageWatcher SSO application supports OAuth 2.0 (https://docs.microsoft.com/en-us/azure/active-directory/develop/active-directory-v2-protocols ) for single sign-on and does not require any role-based access control and assignment is not required. The MessageWatcher SSO app will be enabled for all users by default. The only permission required for MessageWatcher SSO is the default User. Read Graph API permission.

Adding MessageWatcher SSO application to your Microsoft 365 Azure Active Directory:

  1. Logon to your Microsoft 365 admin console
  2. Select “Azure Active Directory” from the admin center menu (see image below).

 

Single Sign On Screenshot

To configure the integration of MessageWatcher SSO into Azure AD, you need to add MessageWatcher SSO from the gallery to your list of managed SaaS apps.

  1. Select the Azure Active Directory overview menu, choose Enterprise Applications > All applications.
  2. Select +New applicationto add an application.
  3. In the Add from the gallerysection, type MessageWatcher SSO in the search box.
  4. Select MessageWatcher SSO from results panel and then add the app. Wait a few seconds while the app is added to your tenant.Note – The MessageWatcher SSO app will be available to all users in your Azure Active Directory by default, you may enable “Assignment required?” and assign it to specific users if you prefer to only allow SSO for certain AD users.