Entra ID (Azure)

You can find below the detailed configuration to set up SSO on Microsoft Entra.

Creation of an application

To configure SSO, you need to create an application in Microsoft Entra.

1. Go to Microsoft Entra admin center
2. Navigate to : Applications>Enterprise Applications
3. Click New application.
   
4. Select Create your own application
5. Put the name (e.g, Dataggo) and select Integrate any other application you don't find in the gallery (Non-gallery)
6. After creation, go to Single sign-on
7. Choose SAML as the single sign-on method.
8. Fill the Basic SAML Configuration
9. Fill in the Basic SAML Configuration fields using the values provided by the Connect Platform.
   
10. Configure Attributes & Claims:
11. Add the email claim.
    
12. Add the groups claim:

• Groups assigned to the application
• Source attribute: Cloud-only group display names
  

1. Fill in the advanced options for the groups claim.
   
2. Confirm you see the following claims configured.
3. After validation, the claims screen should look like this:
   
4. Download the certificate needed for Connect Platform configuration.
5. Copy the Identity Provider (IdP) information.
   
6. Paste the IdP information into the Connect Platform SSO configuration.
   
7. Save the configuration.
   
8. Confirm the save was successful.
   

Create the groups

For the Connect Platform, three user groups are required:

• Administrator: Full rights
• User: Can launch jobs or modify some configurations
• Read only: Can access logs only

Steps to create groups:

1. Create user groups in Azure.
   
2. You can put the label you want
3. Synchronize the groups into the Connect Platform.
   
4. Save your configuration in the Connect Platform.
   
5. Confirm successful save.
   

Everything is now configured and ready to use.