Skip to main content

How to configure Office 365 as External SAML identity provider?

Introduction

Step-by-Step

1. Open a https://portal.azure.com

2. Open Microsoft Entra ID and select Enterprise applications option

image.png

3. Select All applications and click New Application

image.png

4. Select Create your own application

image.png

5. Type the name of your app and select the "Integrate any other application you don't find in the gallery (Non-gallery)" option

image.png

6. Click on Set up single sign on

image.png

7. Click the SAML option

image.png

8. Enter the Basic SAML Configuration and Save:

  • Identifier: https://<YOUR-SERVER>/soffid-iam-console
  • Reply URL: https://<YOUR-SERVER>/soffid/saml/log/post
  • Sign on URL: https://<YOUR-SERVER>/soffid/
  • Logout URL: https://<YOUR-SERVER>/soffid/saml/slo/post

image.png

image.png

9. Configure Attributes & Claims and change the attributes and claims to send the mailnickname as the user identifier (nameid)

image.png


image.png

10. Copy the App Federation Metadata Url

image.png

11. Configure the External SAML identity Provider in the Soffid Console Authentication page

image.png

12. Optional, enable any user to login

image.png