Skip to content
English
  • There are no suggestions because the search field is empty.

How do I set up SSO for my organization?

Overview

If the login via Microsoft SSO to the Eye-Able Dashboard is blocked, this is usually due to your organization’s Microsoft Entra permissions.
This guide shows you step by step how administrators can grant the necessary permissions for the Eye-Able app.

Option 1 – Log in with an administrator account

First, try to log in to the dashboard using a Microsoft Entra admin account.
Depending on your organization’s permission settings, you will automatically be prompted on the Microsoft login page to approve the Eye-Able Dashboard app.
Confirm this request to activate the app for your organization.

Screenshot 2025-10-06 145741

Option 2 – Approve via the Admin Approval URL

If no automatic prompt appears, the app can be approved manually using a special URL.

1. Find the Tenant ID

  • Sign in to the Azure Portal: Open the Azure Portal and sign in with your administrator account.

  • Navigate to Microsoft Entra ID (Azure AD): In the left-hand menu, click “Azure Active Directory” or “Microsoft Entra ID.”

Screenshot 2025-10-06 130853

  • View Tenant ID:
    In the “Overview” section, you will find information about your directory, including:

    • Tenant Name

    • Tenant ID (Directory ID)

  • Copy the Tenant ID: Note or copy the Tenant ID to use it in the next step for the URL.

2. Access the Admin Approval URL

Open the following link and replace {tenantId} with your copied ID:

 
https://login.microsoftonline.com/{tenantId}/adminconsent?client_id=0b7a7198-cc6a-471e-a451-eeab4cf508b9

Example:

 
https://login.microsoftonline.com/12345678-9abc-def0-123456789abcdef0/adminconsent?client_id=0b7a7198-cc6a-471e-a451-eeab4cf508b9

Open the customized URL in your browser.

3. Sign in to the Microsoft portal

If necessary, sign in with your administrator account in the Microsoft Entra (Azure AD) portal.
If you are not yet signed in, you will be prompted to enter your credentials.

4. Review permissions

After opening the link, a page will appear showing the permissions requested by the Eye-Able app.
These include only basic information such as email address and profile, which are required for login to the dashboard.

Authentication is handled via the Microsoft Authentication Library (MSAL) using the User.read scope to retrieve email and profile data.
Microsoft automatically adds additional standard permissions such as “offline_access.”

5. Approve the application

Review the requested permissions and click “Accept” to grant the required permissions to the Eye-Able app.
This will make the app available for your entire organization.

6. Confirmation and test

After approval, you will receive a confirmation message that the Eye-Able app has been successfully authorized.

Then test the login by signing in to the dashboard yourself.
If everything works, all users in your organization can now log in seamlessly to the Eye-Able Dashboard via Microsoft SSO.