sso_azure
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
sso_azure [2019/11/14 09:38] – lucy | sso_azure [2022/10/04 15:18] (current) – lucy | ||
---|---|---|---|
Line 34: | Line 34: | ||
* Tick the option " | * Tick the option " | ||
- | |||
- | * Download the __FederationMetadata.xml__ file from Azure AD and fill the __Identity Provider__ Endpoint and __Certificate Thumbprint__ in Lucy | ||
- | |||
- | {{ :: | ||
- | |||
- | {{ :: | ||
* Download a pre-configured SAML metadata file (copy the URL and paste into your web browser address bar, change the extension of the file to .XML, for example " | * Download a pre-configured SAML metadata file (copy the URL and paste into your web browser address bar, change the extension of the file to .XML, for example " | ||
Line 51: | Line 45: | ||
{{ :: | {{ :: | ||
+ | |||
+ | |||
+ | * Download the __FederationMetadata.xml__ file from Azure AD and fill the __Identity Provider__ Endpoint and __Certificate Thumbprint__ in Lucy | ||
+ | |||
+ | {{ :: | ||
+ | |||
+ | {{ :: | ||
+ | |||
* Add a new Claim " | * Add a new Claim " | ||
Line 70: | Line 72: | ||
{{ :: | {{ :: | ||
- | * (optional) You may also configure a domain name that Azure AD will use to receive authentication requests. Azure supports both single domain and range of subdomains, however, for this you need to use a wildcard SSL certificate. By default, Lucy is configured to use system domain. | + | * (**optional**) You may also configure a domain name that Azure AD will use to receive authentication requests. Azure supports both single domain and range of subdomains, however, for this you need to use a wildcard SSL certificate. By default, Lucy is configured to use system domain. |
To enable support for the subdomains, set the value in the Domain field in the following way " | To enable support for the subdomains, set the value in the Domain field in the following way " | ||
Line 79: | Line 81: | ||
:!: Please note, Azure AD does not support multiple second-level domains in a single application. | :!: Please note, Azure AD does not support multiple second-level domains in a single application. | ||
+ | * (**optional**) If the option " | ||
===== Testing Authentication ===== | ===== Testing Authentication ===== | ||
Line 98: | Line 101: | ||
{{ :: | {{ :: | ||
+ | ===== OAuth 2.0 ===== | ||
+ | |||
+ | The method of authentication is described [[microsoft_azure_oauth_2_0|here]]. | ||
===== Troubleshoot problems ===== | ===== Troubleshoot problems ===== |
sso_azure.txt · Last modified: 2022/10/04 15:18 by lucy