I have successfully setup Apache with mod_auth_openidc to protect a website with Azure as the IDP. For each tenant the Admin of the tenant must create register an App and then they give to me their tenant_id, client_id and secret etc

I then add to my apache ssl.conf file for each tenant inside a <VirtualHost *:443> directive

OIDCProviderMetadataURL /.well-known/openid-configuration

OIDCRedirectURI

OIDCClientID client_id

OIDCClientSecret secret

OIDCCryptoPassphrase "exec:/bin/bash -c "head /dev/urandom | tr -dc A-Za-z0-9 | head -c 32""

OIDCRemoteUserClaim upn

But I must know those 3 values. tenant_id, client_id and secret.

How to do it with any MS tenant? Is it possible to do?

I have been trying with

OIDCProviderMetadataURL .0/.well-known/openid-configuration

Any hints would be must appreciated.