Single Sign-On (SSO)

purpose this document explains how to connect https //learn microsoft com/en us/azure/active directory/fundamentals/active directory whatis sso to xecta product platform(s) using https //en wikipedia org/wiki/saml 2 0 need help? https //xecta atlassian net/servicedesk/customer/portals other readings https //learn microsoft com/en us/azure/active directory/manage apps/what is application management , https //aws amazon com/cognito/ , https //aws amazon com/blogs/security/how to set up amazon cognito for federated authentication using azure ad/ overview the xecta product platform uses aws cognito to manage customer identity and access management (ciam) to enable customer initiated sso via azure ad the customer must create and configure an https //learn microsoft com/en us/azure/active directory/manage apps/what is application management the tutorial below explains each step to create and configure the enterprise application to complete this tutorial the person must have azure privileges to administer enterprise applications tutorial 1 register xecta as an azure enterprise application as an azure administrator open the portal azure com and navigate to enterprise applications select create new application select "integrate any other application (non gallery)" use " xecta " as the application name 2 setup saml integration saml configuration values reply url https //prod authenticate onxecta com/saml2/idpresponse identifier urn\ amazon\ cognito\ sp\ us east 1 ky22t6l1j 3 generate federation metadata xml file download the federation data xml file 4 secure upload of federation metadata xml file upload the file to the xecta secure file transfer system contact or your customer account representative to gain access to the secure file transfer system once you have access drop the xml file into the drop zone and submit the file secure file transfer is provided by sendsafely support will provide you with a dropzone url similar to https //xecta sendsafely com/dropzone/aaa bbb ccc you will get notified by email once sso has been setup on your account 5 test sso integration once sso integration is complete test the federation setup using the "test" at the bottom of the azure saml configuration screen 6 authorize azure ad users or groups to access the xecta enterprise application select "users and groups" from the left hand menu add a user and or groups using the azure ad user/group search box provided save when complete these users or groups will be permitted to access the xecta product platform via sso