Skip to main content
How to set up SSO with Microsoft Azure
Support avatar
Written by Support
Updated over 4 months ago

Who can set up SSO with Microsoft Azure


This can be done by an Admin or an IT person in your company.

How to set up SSO with Microsoft Azure


Create an Application

To configure SSO for Microsoft Azure, you need to follow these steps to set it up properly.

  1. Login to your Active Directory

  2. Click on “Enterprise applications / New application” > “Create your own application”

  3. Enter the name “Moss” for your App

  4. Select “Integrate any other application you don’t find in the gallery (Non-gallery)”

  5. Click “Create” at the bottom of the page (this may take a while)

Assign Users

Before you start assigning users make sure that you created an application with Microsoft Azure in the step before. In this step we will specify what users / user groups are allowed to login to the Moss app.

  1. Create the application in the previous step

  2. Click on “User and Groups

  3. Click on “Add user/group” and add single users or groups of users from the list.

Configuring SSO for the Moss application

By copying the parameters, Azure can check if the expected service is going to use identity service.

  1. Click on “Single sign-on” and select “SAML

  2. In a separate tab open Moss > click on “Settings” > “SAML SSO

  3. Copy values from Moss “SP Entity ID” “SP ACS URL” and “SP Logout URL”

  4. Paste them into the Active Directory settings (Section 1):

  5. The entered values would look like this:

  6. Scroll down and enter the Logout URL

Exposing user attributes

Next, you need to ensure that the needed user attributes are exposed to the Moss app.

  1. In order to do that you need to edit section 2 of the SAML configuration in Azure:

  2. The following attributes should be present. The fields should be populated automatically when the admin selects the appropriate parameters.:

3. Finally, the page would look like this:

How to set up SSO on the Moss platform

URLs allow initiation of SSO. The certificate ensures SSO requests can be trusted by the Moss platform as originating from a proper Azure account.

  1. You need to copy these information from the Microsoft Azure Active Directory to the corresponding Moss SSO fields.

  • Login URL

  • Entity ID and certificate

2. Open Moss and go to “Settings” > “SAML SSO” > "Edit configuration"

3. Paste the information into the corresponding fields

4. Click “Save” and finally enable SSO by enabling the toggle button.

Did this answer your question?