OpenCTI 6.7.7 Entra Authentication #13075
Unanswered
eamallory72
asked this question in
Q&A
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
-
Hello,
I have Open CTI version 6.7.7 configured for authentication with Entra, and it almost works. Currently, when you click the button, you're redirected to Entra, then redirected back to OpenCTI where it fails telling you "Invalid Authentication" I'm using OIC to connect to Entra .
I think I'm missing a way to map our NameID attribute to the email attribute so OpenCTI will accept the authentication. I didn't see such a thing in the docs, so any help would be greatly appreciated.
Below is the relevant log entry
"message":"User email not provided","name":"FORBIDDEN_ACCESS","stack":"GraphQLError: User email not provided\n at error (/opt/opencti/build/back.js:1855:2273)\n at ForbiddenAccess (/opt/opencti/build/back.js:1855:3105)\n at loginFromProvider (/opt/opencti/build/back.js:2647:372793)\n at process.processTicksAndRejections (node:internal/process/task_queues:105:5)"},"level":"error","message":"Error auth provider callback","provider":"oic","source":"backend","timestamp":"2025-11-07T15:42:45.408Z","version":"6.7.7"}
Thanks,
Erik
Beta Was this translation helpful? Give feedback.
All reactions