sso_azure
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
sso_azure [2019/10/09 09:04] – lucy | sso_azure [2022/10/04 15:18] (current) – lucy | ||
---|---|---|---|
Line 17: | Line 17: | ||
{{ :: | {{ :: | ||
- | * Add a new non-gallery web app to your Azure AD, see more [[https:// | + | ===== Enable Single sign-on in Lucy ===== |
- | {{ :: | + | * Configure SAML-based single sign-on to your non-gallery application |
+ | Find more about Azure AD Single Sign-on configuration [[https:// | ||
- | ===== Enable Single sign-on in Lucy ===== | + | {{ :: |
+ | |||
+ | * Add a new non-gallery web app to your Azure AD, see more [[https:// | ||
+ | |||
+ | {{ :: | ||
* Open Lucy Admin console | * Open Lucy Admin console | ||
+ | |||
* Navigate to the **SSO Configuration** page (Settings > SSO Settings) | * Navigate to the **SSO Configuration** page (Settings > SSO Settings) | ||
- | | + | |
+ | | ||
* Download a pre-configured SAML metadata file (copy the URL and paste into your web browser address bar, change the extension of the file to .XML, for example " | * Download a pre-configured SAML metadata file (copy the URL and paste into your web browser address bar, change the extension of the file to .XML, for example " | ||
- | {{ :: | + | {{ :: |
{{ :: | {{ :: | ||
- | * Configure SAML-based single sign-on to your non-gallery application, | + | |
- | + | ||
- | {{ :: | + | |
* Upload the pre-configured SAML metadata file | * Upload the pre-configured SAML metadata file | ||
{{ :: | {{ :: | ||
+ | |||
+ | |||
+ | * Download the __FederationMetadata.xml__ file from Azure AD and fill the __Identity Provider__ Endpoint and __Certificate Thumbprint__ in Lucy | ||
+ | |||
+ | {{ :: | ||
+ | |||
+ | {{ :: | ||
+ | |||
* Add a new Claim " | * Add a new Claim " | ||
Line 51: | Line 64: | ||
* Configure Azure AD SAML token encryption, see more [[https:// | * Configure Azure AD SAML token encryption, see more [[https:// | ||
- | {{ :: | + | {{ :: |
{{ :: | {{ :: | ||
Line 59: | Line 72: | ||
{{ :: | {{ :: | ||
- | * Download the __FederationMetadata.xml__ file from Azure AD and fill the __Identity Provider__ Endpoint and __Certificate Thumbprint__ in Lucy | + | |
- | {{ ::sso_azure_lucy_configs.png?600 |}} | + | To enable support for the subdomains, set the value in the Domain field in the following way " |
+ | |||
+ | {{ ::sso_azure_domain_name.png?400 |}} | ||
- | {{ ::sso_azure_lucy_configs2.png?600 |}} | + | Using wildcard domain name will allow you to use different subdomains in your campaigns. \\ |
+ | :!: Please note, Azure AD does not support multiple second-level domains in a single application. | ||
+ | * (**optional**) If the option " | ||
===== Testing Authentication ===== | ===== Testing Authentication ===== | ||
Line 84: | Line 101: | ||
{{ :: | {{ :: | ||
+ | ===== OAuth 2.0 ===== | ||
+ | |||
+ | The method of authentication is described [[microsoft_azure_oauth_2_0|here]]. | ||
===== Troubleshoot problems ===== | ===== Troubleshoot problems ===== |
sso_azure.txt · Last modified: 2022/10/04 15:18 by lucy