How To Set Up Your Own Microsoft App (SAML)

Step 1

Log in to the your Azure Portal:

https://portal.azure.com/

Step 2

Go to Azure Active Directory, and then go to Enterprise Applications.

Step 2

Step 3

Click New Application

Step 3

Step 4

  • Add a Non Gallery Application
  • Give it a name
  • Click Add

Alternately, you can choose an existing SAML app from Microsoft.

Step 5

Go to the Single sign-on page and configure the following:

  • For Entity ID, enter anything you want. For example, you can enter your company name.
  • For Reply URL, enter:

    https://api.logonlabs.com/callback

  • If required, for the Sign on URL enter:

    https://api.logonlabs.com/callback

Step 5

Step 6

For User Attributes, enable the following:

  • email
  • first name
  • last name

Step 7

Download the Federation Metadata XML for the LogonLabs configuration below. Specifically, take note of the Login URL, Identifier (Entity ID) and X.509 Certificate.

Step 7

Step 8

LogonLabs Setup:

  1. Go to logonlabs.com
  2. Click Sign In and authenticate (or Sign Up make a new account and authenticate)
  3. Navigate to Default Rules (or Domain Rules and open/create a domain module)
  4. Click on the Microsoft button under Enterprise Identity Providers
  5. Choose OpenID Connect.
  6. Click Add.
  7. Enter a name.
  8. Enter a description (optional).
  9. Enter the Login URL from the setup page in Azure.
  10. In the Client ID field, enter the Identifier (Entity ID) that you set above.
  11. In the X.509 Certificate field, enter the X.509 certificate from the Federation Metadata XML document that you downloaded above.
  12. Click Add
  13. Enable Microsoft by clicking the new entry in the Microsoft Identity Providers list
Step 8
← Previous Article
LogonLabs at Seattle Interactive 2019
Next Article →
Custom Google Identity Provider