Here's how to use Single Sign-On with Azure Active Directory.
- Activate the Enterprise Security add-on
- Click Settings → Account → Security → Single sign-on:
- Scroll down and click the metadata file link to download:
- Login to portal.azure.com
- Search for Azure Active Directory and click where it appears under Services:
- Click Enterprise Applications in the sidebar:
- Click Create your own application:
- Enter Upsales in the name of your app field and click Integrate any other application you don't find in the gallery:
- Click Single sign-on in the sidebar:
- Click Upload metadata file and upload the file you downloaded in Step 3:
- This populates the field with information Azure requires for Step 1 of the SSO activation process
- You should see a blue circle with 2. This signifies Step 2 of the process. Click Edit:
- Click the row for Unique User Identifier (Name ID):
- In the source attribute field, choose user.mail. This is because Upsales matches users between Azure AD and Upsales by their email address:
- Click Save and you're taken to Step 3. Click Edit:
- Click +New certificate and click Save:
- Click the three dots next to the certificate
- Click PEM certificate download
- Click Make certificate active:
- Copy the URL that appears:
- In Upsales, go to Settings → Account → Security → Single sign-on
- Paste the URL you copied into the Log in URL field:
- Use a text editor (such as Notepad in Windows or TextEdit in Mac) to open the certificate you downloaded in Step 18
- Copy and paste the certificate text into the Add certificate field (the pasted text should start with ----BEGIN CERTIFICATE---- and end with ----END CERTIFICATE----:
- Click the toggle to activate SSO and that's it!