How to activate SSO (Single Sign-On) with Azure AD

Created by Hannah Peters, Modified on Wed, 16 Aug 2023 at 11:21 AM by David Lordin




Creating the application

Visit the following URL: https://portal.azure.com/#blade/Microsoft_AAD_IAM/ActiveDirectoryMenuBlade once authenticated as an Azure AD administrator. Proceed to add an Enterprise application:
Figure 1

In then following section click “Create your own application” and then give it a name. In this example we will use the name “Connectel Azure SSO Test” (Fig. 3):
Figure 2


Figure 3


Application configuration

From your application Overview copy the Application ID and save it (we will use this ID later on in the configuration):

Figure 4


Continue and assign users or groups to your application:

Figure 5

Once you have added your users and groups to the application, return to the Overview and continue to setup single sign on and method SAML:

Figure 6

Figure 7

On the Basic SAML Configuration click Edit and then choose to “Add identifier” as any unique identifier you wish. In our example we’ll set it to “ConnectelSAMLSSO”. Add a Reply URL that matches the domain of your Connectel instance https://<domain>.connectel.io/api/auth/saml/callback (Fig. 9). 
Then press Save:

Figure 8

Figure 9

Next on the same page, click Edit on the “Attributes & Claims”. Then proceed and click “Add new claim” as shown in figure 11. Enter the name “email” and set the Source attribute to “user.mail” (Fig. 12) then press Save:
Figure 10


Figure 11

Figure 12

Return to the SAML-based Sign-on page and click Download on the Certificate (Base64). Save the content of this file together with the Application ID you saved in the previous chapter. Share the certificate along with the Application ID, Login- and Logout URL. Send this information to helpdesk@connectel.se.
Figure 13


Copy the Login and Logout URL.

Figure 14

Once everything has been setup you can press “Test” at the bottom to verify the configuration of the SAML setup. If the test is successful you should be redirected to the Connectel login and automatically signed-in. This require that there is a Connectel user/agent created that matches your Office365 e-mail address.
Figure 15




Was this article helpful?

That’s Great!

Thank you for your feedback

Sorry! We couldn't be helpful

Thank you for your feedback

Let us know how can we improve this article!

Select atleast one of the reasons
CAPTCHA verification is required.

Feedback sent

We appreciate your effort and will try to fix the article