AZURE Configuration Instructions:
Create the Concord Application in Azure
Navigate to Dashboard > Enterprise Applications > and select “+ New Application”
Select “Create your own Application” > Panel will appear on the right side of the screen, Enter in “Concord” as the Name of the Application, select “Integrate any other application you don’t find in the Gallery”, and then the “Create” button.
Define groups of users who will be able to access Concord via Single Sign-On by selecting
“Assign users and Groups” under Getting Started
Note that if groups are not created, anyone with an approved domain set up could be able to access Concord, From there, they will be automatically assigned as a user in your Concord account and given a seat and you will be billed accordingly if additional seats are not available in your account.
Next, select “Set up Single Sign on”
Select “SAML” as the Single Sign-on Method
Select “Edit” over “Basic SAML Configuration
A panel will appear on the right side of the screen, Enter the below information for EntityId and Reply URL and then “SAVE”.
Exit out of Basic SAML Configuration
If you get a popup to test Single Sign-On, select “No, I’ll test later”
Navigate to “User Attributes & Claims” and select “Edit”
There will be default attributes listed > Select “+Add new Claim”
Enter in the required fields and Save (Image below)
Source Attribute: user.objectid
Navigate to the SAML Signing Certificate section and download the Certificate (Base64) and the Federation Metadata XML
Once complete, email your Onboarding Manager the following:
1. The downloaded metadata and certificate files
2. A screenshot or list of your ‘Additional claims’ section [as seen in screenshot below]
3. The email domain(s) you will use for Single Sign-On
Your Onboarding manager will verify they have received the information required and provide the next steps for testing.