How to Configure Azure AD for SSO

  • Create an Enterprise Application in Azure (Add an enterprise application)
  • Sign in to the Microsoft Entra admin center as at least a Cloud Application Administrator.
  • Browse to Identity > Applications > Enterprise applications > All applications
  • Select New application
  • Choose a name for the application, and select Integrate any other application you don't find in the gallery (Non-gallery)
  • Enable SSO (Enable single sign on)
  • In the Manage section of the left menu in the application, select Single sign-on to open the Single sign-on pane for editing
  • Select SAML to open the SSO configuration page
  • Set Identifier (Entity ID) to urn:auth0:<YOUR_AUTH0_TENANT_NAME>:<YOUR_AUTH0_CONNECTION_NAME
  • Set Reply URL (Assertion Consumer Service URL) to https://{yourAuth0Domain}/login/callback?connection={yourAuth0ConnectionName} (e.g https://{yourAuth0Domain}/login/callback?connection=hub-saml)
  • Download the certificate in base64 and send it to the OpenLegacy team along with the Login URL
  • Copy the Login URL and share it with the OpenLegacy team
  • Add all the relevant Users / Groups.