Step 1: Setup Azure AD as Identity Provider
- SP Entity ID
- ACS URL
Prerequisites:
Copy these values from the Service Provider Info tab of the SAML plugin.
Instructions:
×
![]()
- Log in to Azure AD Portal
- Select Azure Active Directory ⇒ App Registrations. Click on New Application Registration.
- In Create Application dialogue, enter the name of the application, keep Application type as Web app/API and enter ACS URL copied from the plugin as Sign-On URL and create the application.
- The newly created application's information will show up. Click on Settings ⇒ Properties. Enter SP entity ID copied from the plugin as APP ID and save it.
- Go back to Azure Active Directory ⇒ App Registrations window and click on Endpoints link.
- This will open up a window with multiple URLs listed there. Copy the Federation Metadata Document URL. This will be required while configuring the SAML plugin.
×
![]()
- Log in to Azure AD Portal
- Select Azure Active Directory ⇒ Enterprise Applications.
- Click on New Application.
- Click on Non-gallery application section and enter the name for your app and click on Add button.
- Click on Single sign-on from the application's left-hand navigation menu. The next screen presents the options for configuring single sign-on. Click on SAML.
- Enter the SP Entity ID for Identifier and the ACS URL for Reply URL from Service Provider Info tab of the plugin.
- By default, the following Attributes will be sent in the SAML token. You can view or edit the claims sent in the SAML token to the application under the Attributes tab.
- Copy App Federation Metadata Url. This will be used while configuring the SAML plugin.
- Click on User and groups from the applications left-hand navigation menu. The next screen presents the options for assigning the users/groups to the application.
×
![]()