Skip to main content

Setup Guide: Microsoft Azure AD


To setup and configure the Procore-Initiated SSO solution with Microsoft Azure Active Directory (Azure AD). 

Preparation Phase

To prepare for the integration, complete these steps:

  1. Send a request to your company's Procore point of contact to discuss your company's specific SSO requirements and goals. 
    • Ensure that you or a user in your IT organization has an active account with Global Administrator rights to Azure AD. 
    • In Azure AD, select and assign users to create an SSO group that contains the users who will be using your Procore-Initiated SSO solution. For instructions, see Microsoft's Azure Active Directory Documentation.

Integration Phase

To complete the integration, complete these steps:

  1. Complete the required configuration steps. See Configure Procore SP-Initiated SSO for Microsoft Azure AD.
  2. Notify your company's Procore point of contact that the configuration is complete.
    Note: Your Procore point of contact will perform a final, backend configuration step to add the domain to Procore's Admin tool. 
  3. Log in to Procore.  See Log into Procore Using SP-Initiated Azure AD.

Management Phase

Once the integration has been completed, the following should be considered:

  1. Users with login credentials that match your company's SSO-configured domain will be required to log in to Procore using the credentials for their Azure AD account.
    Note: The log in process is supported in Procore Web, Procore for Android, Procore for iOS, and Procore for Windows. 
  2. Passwords and password policies are managed in your company's Azure AD account.
    Note: If your company will be providing Procore access to end users whose login credentials do NOT reside in your Azure AD domain, those users will sign into using the login credentials in their Procore user profile.