SSO using SAML authentication with Azure Active Directory

The SSO feature is available as a paid option on Autify.
This page describes how to set up SSO using SAML authentication with Azure Active Directory (Azure AD), one of the services that you can integrate with Autify.

Set up SAML authentication with Azure AD as the Identity Provider

Before you start setting your application, consult with us so we can send you the Identifier (Entity ID) and Reply URL (Assertion Consumer Service URL) to configure Basic SAML.

Create a new Application

1. Access your Entreprise Application list on Azure
2. Create a new own application

3. Set a name and select 'Non-gallery' as the type

4. Create

Configure Basic SAML

1. Open 'Manage > Single sign-on' or 'Set up single sign on'

2. Select 'SAML' method

3. Edit the Basic SAML Configuration

4. Set the Identifier (Entity ID) and Reply URL (Assertion Consumer Service URL) as provided by us
5. (optional) Set the Sign on URL to "https://app.autify.com/users/sign_in"

6. Download the Federation metadata XML

7. Save

Send us the sign-in domain name and Federation metadata XML

Once you have everything ready, please send the following to Autify:

• Domain used by the user when logging in
  • For example, if the email address is (test@autify.com), the domain will be (@autify.com).
• Login ID (email address)
  • By default, the login ID is set to UPN (UserPrincipalName), but it can be changed. If you change it, please let us know the alternative login ID.
• Federation Metadata XML
  • The metadata XML of the SAML federation

Verify that you can log in

Once the configuration is complete on our end, go to the login page and verify that you can log in.
Enter your email address and click [Continue]. If you log in successfully, the setup is complete.

Notes

• If you use a logo, please use the following logo.
  
• If the setup doesn't work for some reason, we will revert the authentication method back to email and password.