This article provides a summary how Staff users, Resellers\Customers can authenticate existing Azure account instead of MachPanel account .
This article applies to MachPanel v6.0.32
Staff users can authenticate using existing Azure account instead of MachPanel account. Also if customer/resellers have Azure account, they can also authenticate using their Azure account as well via MachPanel Login.
Provider/Reseller and End Customer can add alternate login (email address) if 3rd party authentication is enabled.
- Provider must have Microsoft Tenant.
- Provider has to add a web application in Azure and switch on the multitenanted option.
- Configure and enable O365 Auth provider in panel.
- The employees should be created using Azure login in Panel.
- If customer/reseller using Panel with Private Label Url and want to login using O365.
- Customer/Reseller should have their own tenant in Microsoft O365.
- Their own respective O365 Auth provider enabled and configured in MachPanel.
- In panel we need to add primary email besides user name/login field, for Customer, Customer contact and staff users, to link panel user with O365 user.
- On MachPanel Login page, there will be a link to "Login with Office 365 account", on click user will go to Microsoft login page, once logged in he is signed-in in panel.
- If user is already signed-in in Office365 portal and clicks on Login with Office 365 account, he is automatically signed-in in panel.
- If the user does not exists in panel as staff or customer or customer contact, error message will appear on login page: “User account not found, please contact Administrator.”
Navigate to the following Path:
Home > System Configuration > Authentication
- Enable login using Microsoft account: Check this check box to enable authentication.
- Note: If enabled, staff users and customers can login using Microsoft Azure authentication. Please note that in order to match Azure account to a panel account, the Azure login must be used as portal login or Azure login must be set in additional login in user profile.
- Azure Web Application Id: Here provide the Azure Web AppID.
How to configure Azure Web Application? (hyper-link)
On click show below contents in div:
- Sign in by going to the Azure Portal → https://portal.azure.com and use the same tenant that will authenticate users.
- Go to “App Registrations” and click on “+ New registration” and Fill out:
- Name: e.g., MachPanelPortalAuth
- Supported account types: Choose
- Accounts in any organizational directory (Any Microsoft Entra ID Tenant – Multitenant) and personal Microsoft account (e.g. Skype, Xbox).
- Redirect URI:
- Select Web.
- Enter your main portal URL: https://cp.hosting.com
- (You will enter https://cp.hosting.com/Auth/Login.aspx and all other white-label URLs in next step as well)
- Click Register.
Once registered, click on app name from “All Applications” or “Owned applications” tab:
- Go to Authentication (left menu).
- Under Platform configurations, Add URI for Web. If not already there click Add a platform → Web.
- Enter all Redirect URIs:
-
-
-
-
-
-
If Azure authentication is enabled whose login page is appearing, show: “Continue with Azure” will be as shown.
On Login with Azure, perform steps to login using Azure account. Once user is authenticated at Microsoft, find related user in panel and log-in that user. If user not found, it will give error: “Panel account for Microsoft login xyz@domain.com, does not exist, please contact Administrator”.
Add additional login for staff, customer and customer contacts. Additional login will hold multiple 3rd party logins, like Azure username, Google user name, etc. Staff user, customer and customer contact should be able to set additional login under Profile.
- Staff
- On that staff user login, Click Profile
- Then add additional login
- Customer
- After login as customer go to Profile as shown below:
- Login: Provide Login email address.
- Click Add.
On save, make sure the email used is not used already for Staff, Customer, Customer Contact or End Customer.