Setting up Azure AD for Firmex SSO

Step 1 - Create a non-gallery application

  1. Log in to Azure using this URL (https://portal.azure.com/#home) as an administrator.
  2. From the left pane, select Azure Active Directory.
  3. Under Manage, select Enterprise applications.
    manage_azure_ad.png
  4. Click New Application.
  5. Add a Non-gallery application.
  6. Enter Firmex in the Name field, and click Add.

Step 2 - Set up SSO

  1. Under Manage, select Single Sign-On.
  2. Select SAML.
  3. Click the pencil icon to edit the Basic SAML Configuration.
  4. Enter Identifier (Entity ID) and Reply URL (Assertion Consumer Service URL). Then click Save.
    Note: Azure uses Identifier as an Audience, which is firmex.com.
    Note: ACS URL below
    https://login.firmex.com/authenticate/saml

basic-saml-azure.png

Next, click the pencil icon to edit User Attributes & Claims

  1. Change EmailAddress value to Email by clicking on the field and modifying the value and click Save.
  2. Download SAML Signing Certificate and copy the X509Certificate value.saml-signing-certificate.png
  3. Copy the values from Login URL and Azure AD Identifier, as both of them will be used to configure SAML on Firmex side.

Step 3 - Adding users to the application

In order to access the Firmex application, you will need to grant access to the application to each user. You can create a new user for an environment, or add the application to an existing user’s profile.

  1. Under Manage click Users and Groups
  2. Click Add user or group
  3. Select the user that you want to add and click Save.

Proceed to configure the Firmex side.