Please accomplish the following steps to complete your SSO setup using Microsoft Azure.
1) Select "Azure Active Directory"
2) Select "Enterprise applications"
3) Select "New application" -> "Create your own application"
4) Assign users and groups
5) Go "Single sign-on" -> "SAML"
6) Enter Identifier, Relay URL, Sign On URL
Identifier (Entity ID) :
urn:amazon:cognito:sp:us-east-1_DVSXvqzyB
Reply URL (Assertion Consumer Service URL):
https://prod1-abine-idp.auth.us-east-1.amazoncognito.com/saml2/idpresponse
Sign on URL
https://prod1-abine-idp.auth.us-east-1.amazoncognito.com/oauth2/authorize?response_type=token&identity_provider={TENANT_DOMAIN_STRING}&client_id=4o0tk02413hte9o62hcfog2dc9&redirect_uri=https://sso.joindeleteme.com/sso/&scope=email+openid+aws.cognito.signin.user.admin
Example:
Tenant Login Domain: https://delete-me.joindeleteme.com
Tenant Domain String: "delete-me"
Replace the {TENANT_DOMAIN_STRING} text with the corresponding string from the tenant domain url.
Please replace the identity provider value from ????? to your company name.
7) Examine attributes
8) Copy "App Federation Metadata Url" for AWS Cognito setup
9) Test SSO
Comments
0 comments
Please sign in to leave a comment.