We only support SSO logins with Microsoft Entra ID accounts. We no longer support logging in with Microsoft personal accounts.

Setup

To set up the SSO:
  1. Learn more about the default scopes required by Graph API to connect Next Matter to Microsoft.
  2. Provide Next Matter with Tenant ID.
  3. Grant admin consent for Next Matter.

Provide Tenant ID

To set up Microsoft SSO, you need to provide us with Tenant ID(also known as Directory ID) that you can find in your Azure Portal. The tenant ID is a unique identifier for your organization’s Azure instance. Note that we use OpenID Connect, both for SSO and Graph API. Pass the Tenant ID to your Next Matter account manager so that we can whitelist it on our end.
We can only assign one tenant per workspace.
Get Tenant ID using CLI or Powershell 
az account show --query tenantId -o tsv
If you have access to multiple tenants, make sure you are checking the tenant ID for the correct tenant.
Note that the initial authorization is done using the OAuth2 flow, and then we request additional scopes for each connected Microsoft service. When setting up SSO, the organization’s Global admin will also be prompted to grant admin consent to the Next Matter app in Entra ID. The permissions required include:
  • Reading user profile
  • Accessing email data
  • Directory read access.
You can provide the consent in one of three ways:
  1. Approve all requested permissions.
    1. Log in to Entra ID (Azure Portal) and go to Enterprise Applications > All applications.
    2. Search for Next Matter and click it.
    3. Click Grant admin consent for Next Matter for the required permissions.
  2. Approve login attempts as they come.
    1. Go to Entra ID > Overview > Sign-ins.
    2. Search for the Next Matter login attempt.
    3. Review the details of the login and provide consent directly.
  3. Approve all permissions through Next Matter.
    1. Log in to Next Matter with a user that has Azure Admin privileges using Microsoft SSO.
    2. When prompted, provide consent on behalf of your organization.
Granting admin consent means that Next Matter has the necessary permissions to interact with your Azure tenant as specified, and users won’t be prompted to grant individual permissions when using Next Matter.