SSO configuration using Azure

Updated 1 week ago by Leigh Hutchens

You can configure SSO using Microsoft Azure.

  1. Log into portal.azure.com.
  2. Open the "Enterprise Applications" blade.
  3. Click + to create a new application:
  1. Click "+ Create your own application":
  1. Give the application a name, then select "Integrate any other application" and "Create" at the bottom of the page:
  1. Click "Set up single sign on":
  1. Click "SAML":
  1. Copy app federation metadata URL and provide to Quinyx:
  1. Add provided URL to the SSO configuration page, and click to download metadata. Is this done in Quinyx?
  2. Confirm the required SSO link name. Also confirm the claim type the SSO should use to match Quinyx user to Azure. If using the UPN (email address), this is likely to be: "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress" Check by clicking 'edit' next to 'user attributes and claims':

  1. Complete the remaining essential fields (SSO route, SSO authentication type and SSO attribute from step 10), then click "Save" This will auto-populate the remaining samlldp field. Then click "Generate SP metadata".
  2. Under 'additional claims' the claim name for "user.mail" is the line needed (if matching against email). Choose the relevant alternative claim if not:
  1. Click "Upload metadata file" > select file > "Add" to upload the SP metadata file from Quinyx. The details in this file will populate the 'basic saml configuation' values at the top of the page:
  1. The configuration is compete.


How Did We Do?