Microsoft SAML SSO

Setting up Microsoft SAML SSO in anny

Rabea avatar
Written by Rabea
Updated over a week ago

If you want to set up a corporate login with Microsoft in anny, you've come to the right place! This article will guide you through the process step-by-step.

Preparation

Before we begin, ensure you have anny Admin rights and access to your organization's Azure Active Directory.

Setup:

  1. Access Azure Active Directory: Start by going to Azure Active Directory.

  2. Create a New Enterprise Application: Navigate to Enterprise Applications > New Application > Create Custom Application.

  3. Naming and Selection: Enter a name (e.g., anny SSO) and choose "Integrate any other application you don't find in the gallery."

  4. Proceed to "Set up SSO or Single sign-on."

  5. Select SAML

  6. Download anny's metadata XML file and upload it to Microsoft via "Upload Metadata File."

  7. Activate Attribute Signing. Under "SAML certificate," enable the signing of attributes.

  8. Determine who is allowed to log in by navigating to "Properties." If all your employees should have access, set "Assignment required" to "No." For limited access, select "Yes" and specify the allowed users under "Users and groups."

  9. Copy your metadata URL and add it to your anny admin SSO setting

Testing and Adjustments

After completing the setup, you can test the SSO connection directly. If needed, make any adjustments to ensure a smooth experience.

Additional Information

For attribute mapping setup, refer to the Attribute Mapping article.


For a Visual Guide with Screenshots, Follow the Steps below

1. Create a New Enterprise Application

Start by creating a new enterprise application.

2. Set up SSO

Proceed to set up SSO for the created application.

3. Upload Metadata File

To automatically add the settings, upload the metadata file.

3. Activate Attribute Signing

Enable attribute signing under "SAML certificate."

4. Define Login Permissions

Specify who is allowed to log in by adjusting "Assignment required" and "Users and groups" settings.

5. Share Metadata URL

Copy the metadata URL and add them to your anny admin account

Optional: Checking the Signature

You have the option to verify the signature of the login request (SAMLRequest) by uploading the certificate.

Metadata URL: https://auth.anny.co/tenant/{id}/saml/metadata


Now you're all set! Should you encounter anny issues, refer to our SSO Troubleshooting guide for help. Happy setup!

Did this answer your question?