Setting up SAML Single Sign On (SSO) in Microsoft Azure
1. In Microsoft Azure navigate to Microsoft Entra ID. Click Add Enterprise Application.
2. Click Create your own application.
3. Name your app and select Integrate any other application you don't find in the gallery. Click Create.
4. Click Get started on Set up single sign on.
5. Click SAML
6. Click Edit on Basic SAML Configuration.
Set your Identifier (Entity ID) - this needs to be unique in your directory e.g. https://flourishdx.com/sp. For now, set Reply URL to 'https://api.flourishdx.com/api/saml/acs/'.
Your actual Reply URL will be provided when setting up SAML SSO in FlourishDx.
Click Save.
7. Click Edit on Attributes & Claims and then Add new claim. Add the following claims.
- Map FirstName to user.givenname. Click Save.
- Map LastName to user.surname. Click Save.
8. Now grab your Entity ID (created in Step 6) and your App Federation Metadata Url from the SAML Certificates section. These are required for setting up SAML SSO in FlourishDx.
Setting up SAML SSO in FlourishDx
1. Enable SSO in the FlourishDx dashboard.
Login to FlourishDx dashboard.
Navigate to System > Preferences > Single Sign On.
Select SSO Type Microsoft and then select SAML.
Input your App Federation Metadata Url and Entity ID.
Click Save.
2. You will be provided with a Reply URL. Update your reply URL in your Entra ID App. (See Step 6 above)
3. Create a Landing Page for users to automatically register an account in your FlourishDx organisation.
Navigate to System > Preferences > Customise.
Input a Landing Page URL for your landing page and click the save icon.