Logging in to 12twenty using OpenID Connect is seamless and requires little to no setup. 12twenty supports integrations with Google and Azure Active Directory. 12twenty requests the following scopes: openid email profile and requires the email claim to be present and populated to properly authenticate the user.
To test the integration, first attempt to log in using the “Continue with Google/Microsoft” login button on your site instance’s login page. Enter the credentials for your Google or Azure AD account and proceed through the consent screens. If the login succeeds and brings you to the 12twenty app, no further steps are necessary.
Sub/email claim was missing
Error: “We have encountered an issue logging you into our system: Sub claim was missing.”
Error: “We have encountered an issue logging you into our system: Email claim was missing.”
Azure Active Directory
You will need to ensure your users are configured for use in 12twenty by ensuring their email is populated correctly. In Azure Active Directory, check if your user has the sufficient information provided:
Navigate to Azure Active Directory
Select Enterprise Applications in the side nav
Click on the 12twenty enterprise application
Select User and groups in the side nav
Click on the user that failed the login
Ensure the user has a value entered for Email under Contact info