SAML For Sponsors with Azure

Configure Azure AD SSO

Add the Azure AD SAML Toolkit application

From Home, click on Enterprise applications

Add a new application and Search for Azure AD SAML Toolkit and create it after giving it an explicit name (Cloudi-Fi Sponsors for instance)

Configure Single Sign-On

Once you have the Azure AD SAML Toolkit application, click on it and go to Single Sign-On and On the Select a single sign-on method page, select SAML.

On Set up Single Sign-On with SAML Page

On the Basic SAML Configuration page, enter the values for the following fields :

• Identifier (Entity ID) : https://portal.cloudi-fi.net

• Reply URL (Assertion Consumer Service URL) : Copy and paste the linkback URL or type https://portal.cloudi-fi.net/auth/module.php/saml/sp/saml2-acs.php/sp-sponsor/<CompanyHash>/ ( From Cloudi-Fi => Marked 1 click on copy icon )

• Sign-on URL : https://portal.cloudi-fi.net

The company hash is visible on your Cloudi-Fi account, go to Setting > Company Account > Cloudi-Fi Public Key

On Cloudi-Fi Side

Go to Settings > Auth modes > Sponsor, enter the values for the following fields :

• IdP EntityId : Azure AD Identifier (Marked 2)

• Binding Method : Post or Redirect

• Login Endpoint: Login URL (Marked 1)

• Logout Binding Method (Optional) : Post or Redirect

• Logout Endpoint : Logout URL (Marked 3)

• IdP Signing Certificate (x509 format) : Download the raw Certificate and Past it here (without "Begin Certificate" and "End certificate" markers)

• Email Attribute name : Claim name corresponding to the Mail value ( Marked 1 )