Restrict Office 365 Login to certain Group

Is it possible to restrict the Office 365 Login Plugin to only allow users from a specific Organization and within this organization to a specific Group?

In the Docs it is written, that we must choose the the most permissive option.

This looks like everyone who has a Office 365 Account can log-in to the forum.
When i switch this option to single organization, it stops working.

We need to restrict the access to a Group of users.


I’ve asked our engineers about the issue. The problem is that the plugin is configured to point to the multi-tenant endpoint on Office 365. The suggested workaround is that since Office 365 is the same as Azure AD, the Discourse OpenID Connect plugin can be used to point to a single tenant endpoint. Details about configuring that plugin are here: OpenID Connect Authentication Plugin. Have a look at the Azure AD entry in that topic’s Provider Specific Notes section for details about how to set this up.

If anyone has run into issues with using the OpenID Connect plugin in place of the Office 365 plugin, please let us know.

1 Like