Microsoft Azure Active Directory
  • 28 May 2023
  • Dark
    Light

Microsoft Azure Active Directory

  • Dark
    Light

Article Summary

HUMAN supports logging in to the HUMAN Portal with Microsoft Azure Active Directory as the authentication provider. Refer to the Microsoft Azure Active Directory tutorial for more information

Prerequisites

Administrative access in both a Microsoft Azure account and a HUMAN account is required before configuring Microsoft Azure Active Directory

Configure HUMAN SSO

  1. Login to your HUMAN console with Admin permissions.
  2. Navigate to Platform Settings-> Accounts
    578
  3. Click Edit
  4. In the Edit Account dialog:
    Azure_edit_account
    1. Check Enable Single Sign-On (SSO)
    2. Select Azure SAMLand enter the following details:

      Field Name

      Description

      SAML Endpoint

      Paste the Login URL value you copied from the Azure portal

      Issuer

      Paste the Azure AD Identifier value you copied from the Azure portal

      X.509 Certificate

      Download the certificate from the Azure portal and open it in notepad. Paste the content in this text box

  5. Make sure to Save Changes
  6. Done!

Attribute Mapping

The HUMAN application expects the SAML assertions in a specific format, requiring you to add custom attribute mappings to your SAML attributes configuration

Application Attribute

Description

NameID (SAML_SUBJECT)

User's email address

firstName

User's first name

lastName

User's last name

Inviting Users

When inviting users to login to the HUMAN Portal with Microsoft Azure Active Directory for the first time, refer to the HUMAN Managing Users Guide for full instructions.

If a user was invited prior to enabling Microsoft Azure Active Directory SSO:

  1. In the HUMAN Portal, delete the existing users’ accounts from Admin > Users.
  2. Re-invite the deleted users as new users according to the instruction in the HUMAN Managing Users Guide.
Important
To enable the administrator user to login with Okta SSO, delete the user and re-invite (within the same session) by going to Platform Settings-> Users and selecting Invite User.

FAQ

For more information see the SSO Integration FAQ


Was this article helpful?