SSO Identity Provider Guide - Microsoft Entra ID (Formerly Azure AD)

This article discusses specific help and information for those using Microsoft Entra ID (Formerly known as Microsoft Azure AD) as their Identity Provider (IdP) with the Trackops SAML SSO configuration.

Official Documentation

The official Entra ID SAML configuration documentation is located here:

https://learn.microsoft.com/en-us/entra/identity/saas-apps/saml-toolkit-tutorial

It is recommended to follow the official documentation when setting up the Trackops SAML application inside the Entra ID admin console.

Additional Information

After creating a new application in Entra ID, the App Federation Metadata Url, located under the SAML Certificates section of the single sign-on configuration, can be used to auto-populate the required fields when creating a new Identity Provider in Trackops.

Trackops-Microsoft-Azure.png

Common Issues when configuring this Identity Provider

I receive a "cannot find an SSO-enabled account" error when attempting to log in

The most likely reason you will receive this message is because the Name ID associated with the integration is not configured to use the user's email address. To check, scroll down to the Attributes & Claims section of the configuration, click Edit, and verify the Unique User Identifier (Name ID)  setting is configured to use the user.mail attribute, as shown in the screenshot below.

 

Microsoft-Name-Id.png

 

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request