SAML Authentication Microsoft 365

Setting up SAML authentication in Microsoft 365 requires use of Azure Active Directory.

Azure Active Directory Set Up

1. Go to the Microsoft 365 Admin console and log in with an admin account. 2. Click on 'Show all' in the sidebar, and then on 'Azure Active Directory'.

3. The Azure Active Directory admin center will show. Click on your company name in the dashboard.

4. Click on 'Enterprise applications' in the sidebar.

5. Click 'New application', type 'SAML toolkit' in the search, and select 'Azure AD SAML Toolkit'.

6. Set the name to 'SupportPal SAML' and click 'Create'. Wait until the page reloads and the application has been created.

7. Click on the 'Set up single sign on' and choose the 'SAML' option.

8. Click 'Edit' in the Basic SAML Configuration area. Set the text boxes like shown and set the relevant options as default, replacing the start of the URL with your help desk URL. To use this on the frontend (for users), replace 'operator' with 'frontend'. Click 'Save' once all the fields have been set.

9. Next click 'Edit' in the User Attributes & Claims area. Delete the existing claims and create new claims like shown. The 'role' claim can be ignored if using on the frontend, and additional claims can be configured as per our documentation.

10. Once all that is done, your configuration should look like this:

11. Finally, click 'Users and groups' in the sidebar, then click 'Add user/group'. Select all users that you would like to be able to login using SAML, leaving the role as 'Default Access', and click 'Assign'.