SSO - Azure AD SAML Configuration
Follow these simple steps to set up Azure AD SAML on Azure Portal for your ScaleGrid DBaaS account.
- Login to the Azure Portal.
![SSO-Azure-AD-Setup-1.png 1344](https://files.readme.io/c994e31-SSO-Azure-AD-Setup-1.png)
- Click "Azure Active Directory" from the left menu.
![SSO-Azure-AD-Setup-2.png 566](https://files.readme.io/29b2db0-SSO-Azure-AD-Setup-2.png)
- Click "Enterprise applications" from the left menu.
![SSO-Azure-AD-Setup-3.png 263](https://files.readme.io/9656563-SSO-Azure-AD-Setup-3.png)
- Click "All applications" from the left menu under the "Manage" section.
- Then, click "New Application".
![SSO-Azure-AD-Setup-4.png 517](https://files.readme.io/1d8eed3-SSO-Azure-AD-Setup-4.png)
- Click "Create your own application".
![SSO-Azure-AD-Setup-5.png 551](https://files.readme.io/5684382-SSO-Azure-AD-Setup-5.png)
- Under "Create your own application" on the right side:
- Enter "ScaleGrid SAML" for the app name.
- Select "Integrate any other application your don't find in the gallery".
- Click the "Create" button.
![SSO-Azure-AD-Setup-6.png 582](https://files.readme.io/d616739-SSO-Azure-AD-Setup-6.png)
- Wait until the application is created.
- Go to the newly created "ScaleGrid SAML" application, and click "Single sign-on" from the left menu.
![SSO-Azure-AD-Setup-7.png 638](https://files.readme.io/efdeca6-SSO-Azure-AD-Setup-7.png)
- Click the "SAML" box on the screen.
![SSO-Azure-AD-Setup-8.png 1353](https://files.readme.io/dccc71d-SSO-Azure-AD-Setup-8.png)
- You should see the "SAML-based Sign-on" screen.
![SSO-Azure-AD-Setup-9.png 1028](https://files.readme.io/b9231ef-SSO-Azure-AD-Setup-9.png)
- Click "Edit" from the top right corner of the "1. Basic SAML Configuration" box.
![SSO-Azure-AD-Setup-10.png 767](https://files.readme.io/3dc23f2-SSO-Azure-AD-Setup-10.png)
- Under "Basic SAML Configuration" on the right side, enter the following:
- Identifier (Entity ID): ScaleGridSAML
- Reply URL (Assertion Consumer Service URL): https://console.scalegrid.io/samlAuthenticate
- Sign on URL: https://console.scalegrid.io
- Logout Url: https://console.scalegrid.io/logout
- Click the "Save" button.
![SSO-Azure-AD-Setup-11.png 777](https://files.readme.io/513f07d-SSO-Azure-AD-Setup-11.png)
- Download the "Certificate (Base64)" file from "3. SAML Signing Certificate".
![SSO-Azure-AD-Setup-12.png 765](https://files.readme.io/c911be9-SSO-Azure-AD-Setup-12.png)
- Copy the following values from "4. Set up Scalegrid SAML":
- Login URL - Eg. http://login.microsoftonline.com/aabbcc/saml2
- Azure AD Identifier - Eg. https://sts.windows.net/aabbcc/
- Logout URL - Eg. http://login.microsoftonline.com/aabbcc/saml2
![SSO-Azure-AD-Setup-13.png 778](https://files.readme.io/706ec53-SSO-Azure-AD-Setup-13.png)
- Click "Users and groups" from the left menu.
- Click "Add user/group"
![SSO-Azure-AD-Setup-14.png 1093](https://files.readme.io/e151279-SSO-Azure-AD-Setup-14.png)
- Click "None Selected" under Users.
- Select the users you wish to allow access to your ScaleGrid account, then click the "Select" button.
![SSO-Azure-AD-Setup-15.png 1156](https://files.readme.io/7824be2-SSO-Azure-AD-Setup-15.png)
- Click the "Assign" button.
![SSO-Azure-AD-Setup-17.png 852](https://files.readme.io/dae6dc8-SSO-Azure-AD-Setup-17.png)
- You should now see all assigned users on the "Users and groups" screen.
![SSO-Azure-AD-Setup-18.png 1347](https://files.readme.io/33310b6-SSO-Azure-AD-Setup-18.png)
- Send ScaleGrid the following information:
- Login URL (from step 15)
- Azure AD Identifier (from step 15)
- Logout URL (from step 15)
- The Certificate (Base64) file (from step 14)
Once you're through these steps, head back to our SSO - SAML Setup page to finalize your secure login setup.
Updated over 3 years ago