Create an Application
For the redirect URLs, enter https://{siteName}/Manitou/Login?ws=1.
For testing purposes, https://dev-12.boldgroup.int/Manitou/Login?ws=1 was used. You can enter multiple redirect URLs if you have more than one machine hosting the Manitou Web Client.
For the redirect URLs, enter https://{siteName}/Manitou/Login?ws=1.
For testing purposes, https://dev-12.boldgroup.int/Manitou/Login?ws=1 was used. You can enter multiple redirect URLs if you have more than one machine hosting the Manitou Web Client.
NOTE: The value needs to be copied right after it is created, because it will not be available for viewing after creation. If the value is not copied, then it will need to be deleted and recreated so that it can be copied.
Add groups as a token so that they can be accessed in Manitou.
Create Manitou Groups
The Object ID shown above is what will be used in the OAuth web.config to map the group to a Manitou Group.
Add Users
Add users and assign a Manitou Group to each user who requires Manitou access. Then add the users to the application.
Configure the Client Web.config
Now that the application setup has been completed, the Open ID Connect settings in the Client web.config need to be populated.
Manitou Single Sign-on - Manitou Web Client Setup
The tenant in the OidcAuthority can be found here:
OidcClientID can be found here:
OidcRedirectUri can be found here:
NOTE: Even though there may be multiple redirect URIs, there should only be one configured in the web.config.
OidcLogoutRedirectUri should be https://youManitouSiteName/Manitou/Login. For testing purposes, https://dev-12.boldgroup.int/Manitou/Login. There is no place to enter the LogoutRedirectUri in Azure.
Configure the OAuth Web.config
Now that the application has been set up, the Open ID Connect setting in the OAuth web.config needs to be populated.
Manitou Single Sign-on - Manitou OAuth Setup
The tenant in the OidcAuthority can be found here:
OldClientId can be found here:
OldRedirectUri can be found here:
NOTE: Even though there may be multiple redirect URIs, there should only be one configured in the web.config.
OldClientSecret can be found here:
OidcGroupMapping is '=' delimited '|' delimited values that map group IDs to Manitou Group names. For example:
To map the group named "Manitou Group - Operator" to the "Operator" Manitou Group and the group name "Manitou Group - Supervisor" to the "Supervisor" Manitou Group, you would enter "f88fffbe-b462-4512-b743-0f8473b91c45=Operator|c7cf3e9c-637c-47ba-bc7c- 15bf0ccb4ee3=Supervisor".