Skip to content

Microsoft Azure AD (SAML) SSO Configuration

The Valtix Controller can integrate with Microsoft Azure AD (SAML) SSO for Valtix Portal access user authentication.

Valtix Information

The following Valtix information is needed to configure Microsoft Azure AD (SAML) SSO:

  • Valtix tenant name: ValtixTenantName
  • Identifier (Identity ID): urn:auth0:valtix-prod:ValtixTenantName
  • Reply URL (Assertion Consumer Service URL): https://valtix-prod.auth0.com/login/callback?connection=ValtixTenantName

Azure AD Configuration

The Microsoft Azure AD configuration steps are as follows:

  1. Login to the Microsoft Azure portal

  2. Find and select Enterprise applications

  3. Select New application

  4. Select Create your own application

    • Provide an Input name for your application (e.g., Valtix-SSO-ValtixTenantName)
    • Select Integrate any other application you don’t find in the gallery (Non-gallery)
    • Select Create
    • Note: Wait for the application creation to complete before proceeding
      azureadsaml
  5. Select Single sign-on

  6. Select SAML

  7. From Basic SAML Configuration, select Edit and specify the following

    • Identifier (Entity ID): urn:auth0:valtix-prod:ValtixTenantName
    • Reply URL (Assertion Consumer Service URL): https://valtix-prod.auth0.com/login/callback?connection=ValtixTenantName
      azureadsaml
  8. From Attributes & Claims, select Edit

    • Delete all existing Additional claims
    • Specify the following Add new claims
      • firstname: user.givenname
      • lastname: user.surname
      • email: user.userprincipalname
        azureadsaml
  9. From SAML Certificates, download Certificate (Base64)
    azureadsaml

  10. From Set up Application Name, copy the Login URL
    azureadsaml

  11. Return to Home

  12. Find and select App registrations

  13. Select All applications

  14. Select the application name specified in step (4)

  15. From App roles, select Create app roles and create the following roles

    Display name Allowed member types Value Description
    valtix_admin_super Users/Groups valtix_admin_super Valtix admin_super role
    valtix_admin_rw Users/Groups valtix_admin_rw Valtix admin_rw role
    valtix_admin_read-only Users/Groups valtix_admin_read-only Valtix admin_read-only role


    azureadsaml

  16. Return to Home

  17. Find and select Enterprise applications

  18. Select the application name specified in step (4)

  19. From Users and groups, select Add user/group to add one or more Users or Groups along with an assigned role to the User or Group
    azureadsaml

  20. The Microsoft Azure AD (SAML) configuration is now complete

Azure AD Information

Please provide the following Azure AD information for Valtix to complete the integration:

  • Login URL (from step 10)
  • Certificate (Base64) (from step 9)

MyApplications Login

Login to Valtix can be accessed using the Microsoft MyApplications dashboard. The Enterprise application created above will automatically populate an icon for access to Valtix. Once the configuration is completed on Valtix side, the MyApplications icon can be used for login to Valtix.


azureadsaml

Valtix Portal Login

Login to Valtix can be accessed from the Valtix Portal dashboard. The email address associated with the user will be used as the login email address. This will redirect to Microsoft Azure AD for authentication. Upon successful authentication, access to the Valtix Portal will be granted.


azureadsaml