Azure SSO allows your Addigy Admins to log directly into Addigy from their Azure portal.
When enabling this integration, it enforces and requires all user logins to the Addigy console from the Azure interface.
Prerequisites
- Azure is required.
- Azure Admin access is required to configure the integration.
- The Create and Edit Integration privileges are required in Addigy to configure the Azure Single Sign-on integration.
- Please ensure that you are using the same email address that's associated with your Addigy account.
Overview
Create an Enterprise App within your Azure portal
Set up Single Sign-On
Update SAML Information into Addigy
Open the App from within your Azure portal
Create an Enterprise App within your Azure portal
- Start by selecting Enterprise Applications, you can do this by typing Enterprise Applications in your search bar:
- Select New Application:
- Select Create your own application, then select integrate any other application you don't find in the gallery
Set up Single Sign-On
- Select Set up single sign-on:
- Select SAML:
- Azure now requires the Entity ID and ACS URL. This information is available in the Addigy Console >> Accounts >> Integrations >> Single Sign-On Providers >> Azure:
- The "Default" checkbox should be checked for both the Identifier and the Reply URL, as shown below. No additional information should be included in this set
- Next, set up the following User Attributes in section 2 (in Azure). When you select EDIT for the User Attributes & Claims you'll see this initially:
To achieve correct Attributes and Claims, delete any existing claims except for the Required Claim.
- Create new claims by selecting Add New Claim. You will then see the Manage Claim configuration.
- When filling out a new claim, the Namespace should be completely empty for each claim as seen below:
After configuring the claims correctly, step two should look like this:
- Next, fill out the form on the Addigy Console with the Azure App SSO URL, Entity ID URL, and Certificate.
Starting with the certificate, scroll to Step 3 in Azure and click EditClick on the 3 dots lined up horizontally at the end of your certificate and download the .pem file.
Lastly, assign Users to your Application.
Update SAML Information into Addigy
- Upload the .pem certificate back to Addigy Azure SSO integration. If any changes are made within Azure, a new .pem file will need to be uploaded.
- Scroll down to Step 4 and copy over the SSO URL (Login URL in Azure) and Entity ID Url (Azure AD Identifier) into Addigy
- Then make sure the users who will be logging into the Addigy Console are assigned to the Application in Azure.
Note: Before testing the integration from Azure, ensure that it is has been toggled on in Addigy.
Open the App from within your Azure portal
When signing in using Azure SSO, make sure that it is done by using the App from within the Azure Portal (office.com/apps?auth=2) as signing in via the Addigy login page will not work with this integration: