sso_azure
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revision | Next revisionBoth sides next revision | ||
sso_azure [2019/10/09 09:04] – lucy | sso_azure [2019/11/14 09:34] – lucy | ||
---|---|---|---|
Line 17: | Line 17: | ||
{{ :: | {{ :: | ||
- | * Add a new non-gallery web app to your Azure AD, see more [[https:// | + | ===== Enable Single sign-on in Lucy ===== |
- | {{ :: | + | * Configure SAML-based single sign-on to your non-gallery application |
+ | Find more about Azure AD Single Sign-on configuration [[https:// | ||
- | ===== Enable Single sign-on in Lucy ===== | + | {{ :: |
+ | |||
+ | * Add a new non-gallery web app to your Azure AD, see more [[https:// | ||
+ | |||
+ | {{ :: | ||
* Open Lucy Admin console | * Open Lucy Admin console | ||
+ | |||
* Navigate to the **SSO Configuration** page (Settings > SSO Settings) | * Navigate to the **SSO Configuration** page (Settings > SSO Settings) | ||
- | * Active the option " | ||
- | * Download a pre-configured SAML metadata file (copy the URL and paste into your web browser address bar, change the extension of the file to .XML, for example " | ||
- | {{ :: | + | * Tick the option " |
- | {{ :: | + | * Download the __FederationMetadata.xml__ file from Azure AD and fill the __Identity Provider__ Endpoint and __Certificate Thumbprint__ in Lucy |
- | * Configure SAML-based single sign-on to your non-gallery application, | + | {{ :: |
- | {{ ::sso_azure_enable_saml.png?600 |}} | + | {{ ::sso_azure_lucy_configs2.png? |
+ | |||
+ | * Download a pre-configured SAML metadata file (copy the URL and paste into your web browser address bar, change the extension of the file to .XML, for example " | ||
+ | |||
+ | {{ :: | ||
+ | |||
+ | {{ :: | ||
+ | |||
* Upload the pre-configured SAML metadata file | * Upload the pre-configured SAML metadata file | ||
Line 51: | Line 62: | ||
* Configure Azure AD SAML token encryption, see more [[https:// | * Configure Azure AD SAML token encryption, see more [[https:// | ||
- | {{ :: | + | {{ :: |
{{ :: | {{ :: | ||
Line 58: | Line 69: | ||
{{ :: | {{ :: | ||
- | |||
- | * Download the __FederationMetadata.xml__ file from Azure AD and fill the __Identity Provider__ Endpoint and __Certificate Thumbprint__ in Lucy | ||
- | |||
- | {{ :: | ||
- | |||
- | {{ :: | ||
Line 84: | Line 89: | ||
{{ :: | {{ :: | ||
+ | * (optional) You may also configure a domain name that Azure AD will use to receive authentication requests. Azure supports both single domain and range of subdomains, however, for this you need to use a wildcard SSL certificate. By default, Lucy is configured to use system domain. | ||
+ | |||
+ | To enable support for the subdomains, set the value in the Domain field in the following way " | ||
+ | |||
+ | {{ :: | ||
+ | |||
+ | Using wildcard domain name will allow you to use different subdomains in your campaigns. \\ | ||
+ | :!: Please note, Azure AD does not support multiple second-level domains in a single application. | ||
===== Troubleshoot problems ===== | ===== Troubleshoot problems ===== |
sso_azure.txt · Last modified: 2022/10/04 15:18 by lucy