STEP 1:
Add an identity provider and select Microsoft no matter which Microsoft product to be integrated with your Canvas LMS.
STEP 2:
Get the Application ID from the Azure Portal. The statement on Canvas is out-dated. You should register your App from Azure Portal instead of the Microsoft App Registration Portal.
Application registrations portal is no longer available to register and manage converged applications. We recommend that you manage your existing applications and register new applications by using the App registrations (now Generally Available) experience in the Azure portal.
Learn more in the blog announcement.
Launch the new App registrations experience in the Azure portal.
You will get the Application ID once you get your App registered.
STEP 3:
After a new App created, you need to assign a secret key for it. Learn more about How to register an Application in Azure.
STEP 4:
Enter your own tenent, you can get it from your Azure domain page.
STEP 5:
Change the Login Attribuite to email.
STEP 6:
Read the tips for provisioning attribute fields.
STEP 7:
Check the checkbox for email attribute. It means we use the user email as a primary index for each user. And it will be used for new user creation only.
STEP 8:
Save
Now you have configured a new authentication provider for your Canvas LMS. Open a new browser and try to login via your Azure Directory by opening a URL like this: https://yourcanvas.com/login/microsoft , the login page should be redirected to the Microsoft login landing page. Remember to setup your landing page with your branding assets.
If you logged in successfully. Go to the users directory, and find the new automatically created user. You will see the Authentication Provider identifier mark.