How do I assign roles to users with Microsoft Azure AD SSO?
- FAQ
- How do I assign roles to users with Microsoft Azure AD SSO?
If you are using Microsoft SSO (Single Sign-on), you can easily assign roles to users in your space. Custom permissions allow you to define what a user can do in a space with their Microsoft SSO using Azure AD. This can be done by following the steps below:
![Create new role in your Storyblok Space](https://a.storyblok.com/f/88751/2880x1680/6214ed0068/01_roles_setup.png/m/840x0/filters:quality(90))
1
2
3
Create new role in your Storyblok Space
- Log into the Space
- Navigate to Settings
- Choose the Roles option and click on the Add new role button
- Enter the name of the role you want to create into the input under Name of the role
- Define permissions for the new role and click the Save button
![Define permissions of created role](https://a.storyblok.com/f/88751/2880x1680/74377c26dd/02_roles_setup.png/m/840x0/filters:quality(90))
1
2
3
Define permissions of created role
Now, it’s time to add the created role to the Azure AD group. In order to do so, you need to: (Follow the below image steps)
![Enable integration with SSO](https://a.storyblok.com/f/88751/2880x1680/d7b1fca19b/03_roles_setup.png/m/840x0/filters:quality(90))
1
2
3
Enable integration with SSO
- Copy the ID of your Azure Active directory group
- Enable SSO integration{1}
- Paste the ID into the box input under the External ID (Used for SSO){2}
- Click on the Save button{3}