Microsoft Azure SSO Enablement

Maegan Morrison
Maegan Morrison
  • Updated

You may wish to have single sign-on (SSO) enabled for your AnswerRocket users to minimize steps to get into the product. To use Microsoft Azure SSO for AnswerRocket, you'll need to create an application within your Azure account and provide AnswerRocket with the necessary details.

 

Start by logging into your Microsoft Azure account and searching for Entra ID.

From the results, select Microsoft Entra ID.

Search for Entra ID.jpg

 

From the left navigation, choose the option for Enterprise applications.

Enterprise Applications.jpg

 

Choose New application from the top navigation.

New Application.jpg

 

Then choose the option to + Create your own application.

Create your own application.jpg

 

From the fly out on the right, give your application a name (like "AnswerRocket"), and choose the option to Integrate any other application you don't find in the gallery (Non-gallery). Click Create.

Integrate.jpg

 

Once your application has been created, locate it in the gallery and click on it to open the page.

Find your new application.jpg

 

From the application's page, select Single sign-on from the left navigation.

Select Single sign-on.jpg

 

If presented with the choice for a single sign-on method, choose SAML.

Choose SAML.jpg

 

After choosing the SAML option you should land on the page below. You'll now need to navigate to your AnswerRocket instance to gather the needed information.

SAML Page.jpg

 

Open AnswerRocket and from the main navigation, choose Admin.

AR Choose Admin.jpg

 

From the left navigation choose the shield icon or Authentication.

Choose Authentication.jpg

 

If you've already created an Azure SSO Authentication in AnswerRocket, select it from the options here. If not, choose + Add SSO Authentication.

Add SSO Authentication.jpg

 

From your SSO Authentication, you will need the unique identifiers for Entity ID, Consumer URL, and Sign on URL.

One by one, copy these fields and paste them into the corresponding fields in your SAML Configuration within Azure.

Entity ID > Identifier (Entity ID)

Consumer URL > Reply URL

Sign on URL > Sign on URL

Service Provider Info.jpg

 

After filling out your fields, click Save.

Complete fields click Save.jpg

 

Close the SAML Configuration window and locate the Certificate (Base 64) - click Download.

Certificate Base 64.jpg

 

Copy and paste the contents of the downloaded certificate here, in the same Authentication page within AnswerRocket:

Copy Paste Certificate.jpg

Note: Be sure to delete the lines for "Begin Certificate" and "End Certificate" in their entirety, leaving only the contents of the certificate with no additional spaces or lines of text.

 

Return to the Azure screen and locate the Login URL from section 4.

Login URL.jpg

 

Paste the copied Login URL into the Post binding URL field in AnswerRocket.

Post Binding URL.jpg

 

Return to section 4 in Azure for the Microsoft Entra Identifier.

Microsoft Entra Identifier.jpg

 

Paste this identifier into the Entity Id field in AnswerRocket.

Entity ID field.jpg

 

After completing the necessary fields in AnswerRocket, select Save.

You can now log out of AnswerRocket and test your new single sign-on connection from the login page.

sign on page.jpg

Was this article helpful?

Comments

0 comments

Article is closed for comments.