Expand my Community achievements bar.

Get ready! An upgraded Experience League Community experience is coming in January.
Learn more

Aem Login form to authenticate against microsoft entra id

Avatar

Level 1
Level 1
11/22/25 10:22:52 AM

I could achieve the saml login with microsoft entra id using IDP based login page.

My question is - If I want to design my own login page in AEM and do the authentication against microsoft entra id, what should be the steps?

Any working code examples will be really helpful.

Topics

Topics help categorize Community content and increase your ability to discover relevant content.

Experience Manager Experience Manager as a Cloud Service

Views

303

Replies

3
Sign in to like this content

Total Likes

Translate
Translate
3 Replies

Avatar

Employee
Employee
11/22/25 1:22:47 PM

Hello @SC1 

 

For AEMaaCS :

  • Keep the existing SAML integration on Publish

AEM Publish is Service Provider; Entra ID is IdP.

 

  • Use AEM custom page only as the entry UX, not for password handling

Custom login page is just a branded AEM page.

Actual authentication still happens on Entra’s login page (for security).

 

  • Create a custom AEM login page

- Example page: /content/your-site/en/login.html.

- Add your login component (HTL/HTML) to this page.

 

  • Trigger SAML from your AEM login page using /system/sling/login

- Use resource = a SAMLprotected path (under the SAML handler’s path, e.g. /content/your-site/en/secure/start.html).

- Use saml_request_path = final page after successful login.

  • Flow after clicking the button

- /system/sling/login => Sling picks SAML handler (because resource is protected).

- AEM generates SAML AuthnRequest → redirects to Entra.

- User logs in on Entra => SAMLResponse posted to /saml_login.

- AEM validates, creates/updates user, sets login-token cookie.

- AEM redirects to saml_request_path (your chosen “post-login” page).SAML 2.0 on AEM as a Cloud Service

 

  • Ensure dispatcher / CDN rules allow the auth endpoints

References :
https://experienceleague.adobe.com/en/docs/experience-manager-learn/cloud-service/authentication/aut...

https://experienceleague.adobe.com/en/docs/experience-manager-learn/cloud-service/authentication/sam...

 

Views

271

Replies

1
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 1
Level 1
11/22/25 3:57:58 PM
In response to muskaanchandwani

Hi @muskaanchandwani ,

 

I need the user to enter login credentials in the AEM login page instead of IDP login page.

Then with those credentials validate against my saml IDP.

Is there some guidance around it?

Views

265

Replies

0
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Administrator
Administrator
12/1/25 10:45:48 PM

@SC1 Just checking in! Were you able to get this resolved? If you found your own solution, sharing the details would be a big help to others who might face the same issue later on. And if one of the replies here helped, whether it fully solved the problem or simply pointed you in the right direction, marking it as accepted makes it much easier for future readers to find. Thanks again for helping close the loop and contributing to the community!



Kautuk Sahni

Views

107

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Related Conversations
Uploading assets to AEM via the Desktop App

Views

28

Likes

0

Replies

0
How to create permissions for groups that do not yet exist in AEM?

Views

43

Likes

0

Replies

1
Unable to export dictionary as XLIFF file if it contains #

Views

54

Likes

0

Replies

1
Not able to give certification exam due to technical issue on 13/12/2025

Views

97

Like

1

Replies

3
Best way to delete content fragment at language master level and in all live copies

Views

157

Like

1

Replies

3