Enable SAML SSO with Azure Active Directory

  1. Open Entra ID admin
  2. Navigate to “Enterprise applications”
  1. Create a new application (click New application)
  1. Create your own application (click Create your own application)

a. Enter name (e.g. “MacStadium-Portal”)

b. Select “Integrate any other application you don’t find in the gallery (Non-gallery)”

  1. Click “Single sign-on”
  1. Select “SAML”
  1. Click “Edit” on the “Basic SAML settings”
  1. Configure SAML

    1. Identifier (Entity ID): urn:amazon:cognito:sp:us-east-1_pusi8jHs1
    2. Reply URL (Assertion Consumer Service URL): https://idp.macstadium.com/saml2/idpresponse
    3. Logout URL (Optional): https://idp.macstadium.com/saml2/logout
    4. Complete the setup by clicking “Save”
  2. Provide our support team with the following

    1. “App Federation Metadata Url”
    2. Email address claim (e.g. http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress)