Skip to main content

How can I set-up Azure SAML?

C
Written by CX Enablement
Updated over a month ago

Azure SAML Setup Guide

  1. Navigate to Enterprise Applications to begin creating a new application.

  2. On the New Application page, click "Create your own application".

  3. Give your app a name (we recommend CisionOne) and make sure "Integrate any other application you don’t find in the gallery (Non-gallery)" is selected, then click Create.

  4. In the settings of the newly created application, click "2. Set up single sign on".

  5. Select "SAML".

  6. In section one, click "Edit" in the top right.

  7. Copy/paste the Identifier and ACS URLs from CisionOne, ensuring:

    • The ACS URL goes into the Reply URL field in Azure.

    • The SP ENTITY ID URL goes into the Identifier field in Azure.

  8. Next, set up claims. Azure will create a default set of claims, but these are incorrect and must be changed. Click Edit in the top right.

  9. Remove all default Additional claims created by Azure by clicking the menu and selecting Delete.

  10. For each required CisionOne attribute — email, first_name, last_name — add a new claim:

    • Set the Name and Source attribute.

    • Leave the Namespace field empty.

  11. When done, the claims page should reflect the required attributes.

  12. Return to the SAML configuration page — we now need to set the certificate in CisionOne.

    • Download either the Certificate (Base64) or the Federation Metadata XML.

    • Open in a text editor and copy the X509Certificate value into the CisionOne SAML setup.

  13. Set up the sign-in and identity URLs:

    • Go to Section 4 in Azure.

    • Copy the Login URL from Azure into the SSO URL field in CisionOne.

    • Copy the Microsoft Entra Identifier URL into the IDENTITY ID field in CisionOne.

  14. In the CisionOne SAML setup, add your domain by typing it into the box and pressing Add.

Did this answer your question?