Drupal is a registered trademark of Dries Buytaert
drupal 11.3.8 Update released for Drupal core (11.3.8)! drupal 11.3.7 Update released for Drupal core (11.3.7)! drupal 11.2.11 Update released for Drupal core (11.2.11)! drupal 10.6.7 Update released for Drupal core (10.6.7)! drupal 10.5.9 Update released for Drupal core (10.5.9)! cms 2.1.1 Update released for Drupal core (2.1.1)! drupal 11.3.6 Update released for Drupal core (11.3.6)! drupal 10.6.6 Update released for Drupal core (10.6.6)! cms 2.1.0 Update released for Drupal core (2.1.0)! linkit 7.0.14 Minor update available for module linkit (7.0.14). masquerade 8.x-2.2 Minor update available for module masquerade (8.x-2.2). video_embed_field 3.1.0 Minor update available for module video_embed_field (3.1.0). bootstrap 8.x-3.40 Minor update available for theme bootstrap (8.x-3.40). menu_link_attributes 8.x-1.7 Minor update available for module menu_link_attributes (8.x-1.7). editoria11y 3.0.0 Major update available for module editoria11y (3.0.0). trash 3.0.27 Minor update available for module trash (3.0.27). twig_tweak 4.0.0-alpha2 New alpha version released for module twig_tweak (4.0.0-alpha2). twig_tweak 4.0.0-alpha1 First alpha version released for module twig_tweak (4.0.0-alpha1). node_revision_delete 2.1.1 Minor update available for module node_revision_delete (2.1.1). commerce_paypal 2.1.2 Minor update available for module commerce_paypal (2.1.2).
← All modules

openid_connect_windows_aad

7,947 sites Security covered
View on drupal.org

OpenID Connect client / plugin for Microsoft Azure Active Directory authentication

This module is a Microsoft Azure Active Directory client for OpenID Connect.

Microsoft Azure AD connection can be achieved by using the Generic client in OpenID Connect. The OpenID Connect Microsoft Azure AD client basically does the same thing, but adds some powerful Azure AD specific settings, which can be found below.

Graph API to enrich the user data

An option is added to the settings page that enables the use of the Graph API instead of the Open ID Connect userinfo endpoint. It brings more fields of the user profile. There is also an option to use another property for email address (when using Graph). Finally, it is optional to to update existing user's email address in case another email address property is used.

Map user's AD groups to Drupal roles

Enable this to configure Drupal user role assignment based on AD group membership.

Single sign out

Checking this option will enable Single Sign Out to occur so long as the logout url has been set to (http(s)://yoursite.com/openid-connect/windows_aad/signout) in your Azure AD registered app settings. If a user logs out of the Drupal app then they will be logged out of their SSO session elsewhere as well. Conversely if a user signs out of their SSO account elsewhere, such as Office 365, they will also be logged out of this app.

Missing email address not blocking

This module will check if an email address is part of the UserInfo data. In case no email is there, it will still create the user, but use the username instead, providing a notice to prompt the user to change it in his/her user settings. This message to the user is optional.

Integration with Key module

Integration with the Key module, so safe storage of sensitive data, in our case the client secret, is provided.

Activity

Total releases
1
First release
Mar 2026
Latest release
1 month ago
Release cadence
Stability
0% stable

Releases

Version Type Release date
2.0.0-beta10 Pre-release Mar 11, 2026