Documentation

Integrations / SSO / Azure Active Directory

Azure Active Directory

Azure Active Directory (Azure AD) is a cloud-based identity and access management service. You can easily setup by using our prebuilt template from the Azure AD Gallery.

Goal

The goal is to set up an integration between Azure AD and Blockbax.

Prerequisites
Steps to connect Azure AD with Blockbax

  1. Log in to the Azure Active Directory admin center

  2. Go to Enterprise applications in the side-panel, click ‘New application’, search for ‘Blockbax’ and create it

    Create Blockbax from Azure AD app gallery

  3. Click on ‘Set up single sign on’

  4. Select SAML as single sign-on method

    Select SAML as single sign-on method

  5. Copy the ‘App Federation Metadata Url’

    Copy the App Federation Metadata Url

  6. Log in to the Blockbax Web App

  7. Go to your organization from the dropdown in the top right corner

    Go to Blockbax organization

  8. Navigate to the organization’s Settings and open the ‘SSO settings’ section

    Blockbax SSO settings

  9. Paste the ‘App Federation Metadata Url’ in the ‘Metadata URL’ field

  10. Now copy the ‘Entity ID’ and ‘Assertion Consumer Service URL’ from Blockbax and paste it in the related fields in the Azure Active Directory admin center by clicking edit on the first step for the Basic SAML configuration.

    Set up Single Sign-On with SAML

  11. Once you click ‘Save’ here you will be asked to test it, click Yes and you should be able to login via Azure AD in the Blockbax Platform!

    Test single sign-on with Blockbax
Just-in-time (JIT) provisioning is enabled by default. This means that user accounts are created the first time users successfully log in to the Blockbax Platform. Once you configured SSO you are able to define a default role at each project's SSO settings for these first time users.