Azure IDP-Initiated SSO

Overview

This guide provides instructions for configuring Azure Single Sign-On (SSO) with Cloudsaver through IDP-initiated authentication.

Initial Setup in Azure

1. Navigate to Azure Portal and search for Enterprise applications
2. Click New application on the Enterprise applications page
3. Select Create your own application, enter "CloudSaver" as the app name
4. Choose Integrate any other application you don't find in the gallery (Non-gallery) and click Create

Configure Single Sign-On

1. Select Single Sign-on from the left menu
2. Choose the SAML tile as the authentication method

Exchange Configuration Details

1. In Cloudsaver, navigate to Settings > Single Sign-On and click Set Up SSO
2. Copy the Entity ID from Cloudsaver
3. In Azure, under Basic SAML Configuration, click Edit and paste the Entity ID in the Identifier field
4. Copy the Single Sign-On URL from Cloudsaver and paste it as the Reply URL in Azure

Configure User Attributes

1. In Azure, under Attributes & Claims, click Edit
2. Add new claims for:
   • email— user.mail
   • given_name— user.givenname
   • family_name— user.surname

Complete Certificate Exchange

1. Download the Certificate (base64) from Azure's SAML Certificates section
2. Upload the certificate to Cloudsaver's X509 Signing Certificate field
3. Copy the Login URLfrom Azure's "Set up CloudSaver" section
4. Paste the Login URL into Cloudsaver's Sign-in URL field and submit

Verification

Confirm that Cloudsaver displays SSO is configured in the SSO Status field.