V1_4
First steps
      Back to home
      1. Knowledge Base
      2. General
      3. First steps

      How do I set up Microsoft 365 login for Scope?

      By combining MS Entra ID and Scope credentials, you can manage users and their master data yourself. Enable full control over your internal password policies and benefit of a secure multifactor authentication (MFA).

      How do I set up the integration?

      Prerequisites:

      You already have Microsoft 365 ready for your staff.

       

      Current limitations:

      1. Migration is limited to the usage of one Microsoft tenant ID per Scope organisation. This restriction is temporary, and will be lifted in the future.
      2. End-users will need to remember their password from before the migration for access to the Scope test system. This concerns a temporary solution, as access to the Scope test system will change.
      3. User IDs for the Scope Rest Webservices will not be migrated to Microsoft 365. This restriction is temporary, and will be lifted in the future.
      4. The default e-mail address for sending e-mail from Scope is the personal e-mail address of the user as defined in the Microsoft 365 user profile.

       

      1. Send us your Tenant/Organization ID, which you can find on the MS Entra ID overview page.
        Send us your information here:
        https://share.hsforms.com/1o62sARgQQYypWVDXO0K16g5c4nh
         
        Tenant ID2
      2. We will do the required mapping and inform you. 
      3. Navigate to scope.riege.com.
      4. Click the Sign in button and enter your Microsoft 365 account details and confirm by clicking Next and Sign in
        NOTE: Depending on your MS Entra configuration, it may be necessary to have admin rights to proceed. If you encounter an error message here, please talk to your administrator.
      5. Confirm the following messages with the button Accept.
        You are authorizing Scope to log you in. 
        Accept_EN
      6. Back on the Scope Welcome Page, you can now start the Scope interface by clicking Launch App. If you receive a warning message, proceed as follows:
        a) Check the box for Always allow
        b) Then click on open.
      7. Scope is loaded, and a login window awaits your input.
      8. Enter your usual Scope credentials here. This will establish the link between Microsoft 365 and Scope, and in the future the login will be automatic. 

      Notes for MS Entra ID administrators

      • The names scope.riege.com and api.riege.com must be activated in any existing firewall. For successful use of the test environments, scope.riege.cloud and api.riege.cloud must be activated in the same way. All communication there takes place on port 443 with HTTPS. We cannot issue IP addresses for the hosts as these addresses are not under our control but are managed dynamically - depending on the location - by Microsoft.
      • Once we have assigned your Tenant/Organization ID and enabled the login process, the login of all users is only possible with the MS 365 credentials. Scope appears in the MS Entra ID Application Gallery and you can actively manage the users yourself. For example, it is possible to group the Scope users in one or more groups. 
      • Scope does not require any special MS Entra permissions.
      • For more information about the multi-factor authentication (MFA) please visit the Microsoft support pages.