Skip to main content
Traceable Documentation

Configuring SSO with Azure Active Directory

Saad Farooq
  • Updated

 

Overview:

This article covers the steps required to set up SSO with your Azure AD instance. 1-4 will be completed within Azure and the rest will be completed by the Traceable team once the necessary information has been provided. 

 

Steps to configure:

1. Create an ‘Enterprise Application’ on the Azure AD.

7ace3d19-c3c3-46fa-8aa5-66d14adbcd36.png

c3284c1c-10f5-4c92-83d9-adf28a3f876d.png

2. Fill in the Identifier (Entity ID) and Reply URL (Assertion Consumer Service URL)  as follows , rest of the fields are optional and can be empty.

Please note the format of the following:

- Reply URL (Assertion Consumer Service URL) - This URL should include the name of your organization. For example: 

https://auth.traceable.ai/login/callback?connection=SAML-CustomerName

- Identifier (Entity ID)

urn:auth0:traceable:<ConnectionName>

<ConnectionName> is the name of the connection created in on Traceable's end, typically “SAML-$customername”

27d36e4e-75a0-4a76-8f70-49062e36c746.png

3. Configure ‘Attributes and Claims’ , please note you can configure user claim attributes or group claim attributes (if you are looking to send group information and do role mapping on Traceable at group level)57e66c57-0897-4b44-82a7-b968ed5603d3.pngbba5e73d-7094-410e-a355-d9e4bb9cd949.png

4. Download the X509 Certificate and copy the login URL to be sent to Traceable team

51d4ae21-032f-44ee-aec4-7c83d5a09f5c.png

5. Once you download the certificate and the login URL , share it with your Traceable sales/customer success team member and they will complete the rest of the set up on Traceable's end. 

6. Once #5 is complete - please test your integration by logging into the tenant , when you type your user alias, on successful integration the UI would show the user input and would take you to sign in via your Azure AD instance. 

 

Related articles