Enable Identity Provider

In order to provide External Authentication, you must create and properly configure an Identity Provider.

A. Create an Identity Provider

1. Navigate to Administration > Identity Providers
2. Create a New record
3. Enter a Display Name (can be anything)
4. Select a Provider Type
   1. Use your specific provider if listed.
   2. Use OAuth 2.0 if your provider is not listed
5. Enter a temporary Client ID (you can't save the record without this, but will change it in a later step)
6. Save
7. Copy the Identity Provider Unique ID. You will need this in a later step. You will need to replace any lowercase characters with uppercase.

B. Configure provider specific values

1. Go to the Developer Site (below) for the account.
2. Provide the applications your system information.
3. Enter an App ID.
4. Enter an App Secret.

Developer Sites

• Facebook: https://developers.facebook.com/
• Microsoft: https://account.live.com/developers/applications/
• Azure AD: https://azure.microsoft.com/en-us/develop/identity/

System Information

You may need to provide the following values if required by Identity Provider.

Ministry Platform Installation

This is the base url for your MinistryPlatform installation ending in ministryplatform (and nothing else)

https://[YourDomain]/ministryplatform

External Login Callback URL

This callback url is created by taking the guid from the Identity Provider and adding it to the base callback url.

The [IdentityProviderUniqueID] must be replaced with the ALL UPPERCASE guid from your Identity Provider record

https://[YourDomain]/ministryplatformapi/oauth/callback/[IdentityProviderUniqueID]