Sense Medical

Cortex supports enterprise single sign on with Azure AD OpenID Connect.

Before connecting to Azure AD, Sense Medical must associate any domain names your organisation uses to authenticate to Azure AD with, to your Cortex organisation.

Follow the steps below in order to configure Cortex to use Azure AD authentication:

1. Login to Cortex using an organization administrator account https://nz.cortex.health

2. Navigate to "Settings"

3. Grant Admin Consent. 

This will create a service principal (representation of the Cortex application) in your tenant, as well as creating a delegation to grant tenant-wide consent to Cortex, so that each user is not required to grant consent to the Cortex application. 

Granting tenant-wide admin consent requires you to sign in as a user that is authorized to consent on behalf of the organization. This includes Global Administrator, Privileged Role Administrator, Application Administrator, or Cloud Application Administrator. A user can also be authorized to grant tenant-wide consent if they are assigned a custom directory role that includes the permission to grant permissions to applications. 

Under "Azure AD Integration" click "Grant Azure AD Admin Consent". You'll then be redirected to login with your Azure AD credentials.  https://docs.microsoft.com/en-us/azure/active-directory/manage-apps/grant-admin-consent

4. Connect Azure AD tenant to your Cortex organization. Click "Connect Cortex To Azure AD", sign-in to Azure AD tenant again, then you'll be redirected back to Cortex and your Azure tenant will be linked, with your Tenant ID being displayed.

5. Back on the Cortex "Settings" page, click "Edit", and ensure that "Sign-in with Azure AD" is enabled.

6. Now users will be able to login at https://nz.cortex.health and they'll be directed through Azure AD for their credentials.