Microsoft (Public) OpenID Setup

This guide walks through a basic setup allowing Microsoft users to authenticate with your Kasm deployment.

Reference Docs:

Creating a Microsoft OAuth App

  1. Login to the Microsoft Azure Portal:

  2. Select Azure Active Directory.


Azure Active Directory

  1. Select App Registrations.


App Registration

  1. Select New Registration.

  2. Give the app a Name (e.g Kasm).

  3. In the Supported account types select Accounts in any organizational directory (Any Azure AD directory - Multitenant) and personal Microsoft accounts (e.g. Skype, Xbox).


In this example, we walk through creating an integration where any Microsoft user can auth with the Kasm app. This is ideal for a public facing deployment. Other options are available for single-tenant and multi-tenant configurations.


Register App

  1. On the next page, the Application (client) ID is shown, save this value as the Client ID to be used in the next section.

  2. Select Add a certificate or secret next to Client credentials.


Client Credentials

  1. Select the Client secrets tab, then slick New client secret.

  2. Enter a description and expiration then click Add.

  3. The credentials are shown, save the Value as the Client Secret to be used in the next section.


Client Secret

Kasm OpenID Config

  1. Log into the Kasm UI as an administrator.

  2. Select Access Management -> Authentication -> OpenID -> Add Config.

  3. Update the form with the following entries, using the Client ID and Client Secret gathered in the previous section.



Display Name

Continue with Microsoft

Logo URL



Auto Login






Client ID

<Client ID From Microsoft OAuth App>

Client Secret

<Client Secret from Microsoft OAuth App>

Authorization URL

Token URL

User Info URL


openid email profile

Username Attribute


Groups Attribute





Kasm OIDC Configurations

  1. Click Save to save the changes.

Microsoft Login Test

  1. Logout of the Kasm to display the login screen. The OpenID configuration should be shown.


Login Screen

  1. Click Continue with Microsoft

  2. The user is redirected to Microsoft for auth.


Microsoft Auth

  1. Upon completion, the user is logged into the Kasm app.