Skip to main content

Integration - M365, Entra ID and your BindHQ Environment

Sheila
Updated

 

Applies to:

  • Agency Owners
  • Administrators

Overview

BindHQ can be configured to allow login via a Microsoft account, enabling secure single sign-on (SSO) and access to associated Outlook email accounts within the application.

Note: Microsoft Entra ID is the new name for Azure Active Directory (Azure AD). All features and functionality remain the same.

This article explains how to configure the integration and how to use it after login.

 

Step 1: Register an Application in Microsoft Entra ID

  1. Sign in to the Microsoft Entra Admin Center
    https://entra.microsoft.com

  2. In the left-hand menu, navigate to:
    IdentityApplicationsApp registrations

    Enterprise Viewportal-02-app-reg-01.pngProfessional ViewScreenshot 2025-06-20 at 11.00.10 AM.png

 

  1. Click "New registration" and fill out the registration form:

    • Name: BindHQ Integration

    • Supported account types: Choose the option that matches your organization

    • Redirect URI (Web):

       
      https://CLIENT.bindhq.com/login/check-microsoft

      Replace CLIENT with your actual BindHQ subdomain.

 

The value for this field should be https://CLIENT.bindhq.com/login/check-microsoft (where CLIENT is your BindHQ client name). You may also need to add the following permission to the application, depending on if permission can be granted for the organization by an admin when logging in.

  • offline_access
  • openid
  • email
  • profile
  • User.Read
  • Mail.Send
  • Mail.ReadWrite

Next, you will need to create some authentication secrets for the Client Details.

Navigate to “Certificates & secrets”.

 

In the "Client secrets" section choose "New client secret"

 

Ensure the name is descriptive enough to be able to identify its purpose. This should be a description that will be familiar to you, (the client), such as an integration with BindHQ. 

 

NOTES:

  • Copy this secret value to a secure location now, this is the only time it will be visible.
  • Set an expiration based on your best practices (180 or 365 days) but also set a reminder to update these secrets BEFORE they expire. 
 

BINDHQ Details:

With all the required resources created, you can now create/update the BindHQ configuration.
  1. Directory (tenant) ID (BindHQ tenant ID)
  2. Application (client) ID (BindHQ client ID)
  3. Secret value (BindHQ client secret)

Image

 

 

In BindHQ, navigate to the O365 credentials page in the settings area.
Settings > Organizational Settings > Office 365 Credentials

 

Screenshot 2025-06-20 at 8.48.15 AM.png

 

 

From here you can proceed to edit the details you created in the Azure portal.

 

 

After clicking save, you should be able to log out (or use a different browser) and test the configuration using the "Sign In with Microsoft" button on the login page.

Tips & Best Practices

 

Keywords for Search:

  • Office365
  • M365
  • Entra ID
  • Integration
  • Azure Portal

Related articles

Comments

0 comments

Please sign in to leave a comment.

Powered by Zendesk