Azure SSO allows your Addigy Admins to log directly into Addigy from their Azure portal.
When enabling this integration, it enforces and requires all user logins to the Addigy console from the Azure interface.
Please note: The steps listed below are reflecting Azure's new view.
To use the new view, you will select this option that is seen in your Azure portal when creating a new Enterprise Application.
1. Azure is required.
2. Azure Admin access is required to configure the integration.
3. The Create and Edit Integration privileges are required in Addigy to configure the Azure Single Sign-on integration.
4. Please ensure that you are using the same email address that's associated with your Addigy account.
Create an Enterprise App within your Azure portal
1. Start by selecting Enterprise Applications, you can do this by typing Enterprise Applications in your search bar:
2. Select New Application:
3. Select Create your own application, then select integrate any other application you don't find in the gallery
Set up Single Sign-On
1. Select Set up single sign-on:
2. Select SAML:
3. Azure now requires the Entity ID and ACS URL, you can find this information in the Addigy Console -> Accounts -> Integrations -> Single Sign-On Providers -> Azure:
4. The "Default" checkbox should be checked for both the Identifier and the Reply URL, as shown below. No additional information should be included in this set
5. Next, set up the following User Attributes in Step 2. When you select EDIT for the User Attributes & Claims you'll see this initially:
Note: To achieve correct Attributes and Claims, you can delete any existing claims except for the Required Claim.
6. You would then create new claims by Selecting Add New Claim. You will then see the Manage Claim configuration.
7. When filling out a new claim, the Namespace should be completely empty for each claim as seen below:
Note: After configuring the claims correctly, step two should look like this
8. Now we have to fill out the form on the Addigy Console with the Azure App SSO URL, Entity ID URL, and Certificate.
9. Let us start with the certificate, scroll to Step 3 in Azure and click Edit
10. Click on the 3 dots lined up horizontally at the end of your certificate and download the .pem file.
11. Lastly, you'll want to assign Users to your Application
Update SAML Information into Addigy
1. Upload the .pem certificate back to Addigy Azure SSO integration. If any changes are made within Azure, a new .pem file will need to be uploaded.
2. Scroll down to Step 4 and copy over the SSO URL (Login URL in Azure) and Entity ID Url (Azure AD Identifier) into Addigy
3. Then make sure the users who will be logging into the Addigy Console are assigned to the Application in Azure.
Note: Before testing the integration from Azure, ensure that it is has been toggled on in Addigy.
Open the App from within your Azure portal
When signing in using Azure SSO, make sure that it is done by using the App from within the Azure Portal (office.com/apps?auth=2) as signing in via the Addigy login page will not work with this integration: