Enter the ACS URL and Entity ID from Ninite into that Azure section, and save and close it.ġ2. Basically the items on the right of the Ninite SAML page go into the top section of the Azure SAML page.ġ1. You'll see these on that SAML page in Ninite. The ones you're concerned about here are the Entity ID and the ACS URL. There are two items marked "Required" in red. Now with both tabs now ready, look back in Azure at the top box of the SAML page. Then, IMPORTANT - you'll need to scroll down to the "Manual SAML Configuration" at the very bottom of the Ninite SAML page. First, make sure that you check the box for "SAML" in the upper left in addition to the "password" checkbox. Click that to go to the configuration page. From there you'll see a button for "Configure single sign-on (SAML)". Open a new browser tab (since you'll need to reference both Azure and Ninite in the following steps), log into Ninite, and then click on your name in the upper-right corner of Ninite ("Signed in as ") and select Manage Users. This is where you'll need to have some information ready from your Ninite account page. Make sure the bubble is selected for "non-gallery"Ĩ. Click on New Application (it is just above all the drop-down fields)ĥ. Note - Steps 3 through 7 might not be needed if you've already done itģ. In the Azure Active Directory pane, select Enterprise applications. Log into your Azure portal, and on the left navigation panel, select Azure Active Directory.Ģ. If not, you can try configuring it manually with the following instructions:ġ. Then try running the Test option from the Azure app and see if it succeeds.
You need to make sure the name identifier format is configured as "Email Address" and (IMPORTANT!!!) you need to CHANGE the "source attribute" to "user.mail" Save and close. Here we just care about the required one (Name ID).
To check this, go into the SAML settings for your Azure app and then go into the User Attributes box (second from the top). The most common problem when configuring Azure with Ninite is that the "source attribute" of the Name ID must be "user.email" which is not the default setting. Here are the required steps (make sure you have the account created in both Ninite and AD)
0 kommentar(er)
