Before you can start using single sign-on to log into Ometria, you'll need to configure your Microsoft account to make sure it works with Ometria.
Microsoft's documentation: SAML authentication with Microsoft Entra ID
Before you begin
You'll need an account with Microsoft Entra.
Configure your Microsoft SAML app
Log into your Microsoft Entra control panel and go to Applications > New application:
Complete the Create your own application form by entering a clear, descriptive name (we recommend including "Ometria" for clarity) and selecting Integrate any other application you don’t find in the gallery:
Click Create.
Next, click Set up Single Sign-On…
…and select SAML:
The Set up Single Sign-On with SAML screen displays.
Under Basic SAML configuration, select Edit:
Complete the following fields:
Field | Description |
Identifier (Entity ID) | Enter: sso://saml.prod.app.ometria.com
|
Reply URL (Assertion Consumer Service URL) | Enter: https://app.ometria.com/sso/saml/callback"
|
Select Save to save your configuration and return to the Set up Single Sign-On with SAML screen.
Now Edit the Attributes & Claims section:
Make sure that the nameidentifier's Source attribute is 'user.mail'.
You don't need to make any other changes to this form.
Select Save to save your configuration and return to the Set up Single Sign-On with SAML screen.
Now Edit the SAML Certificates section.
Complete the form as follows:
Field | Description |
Signing Option | Select 'Sign SAML assertion' |
Signing Algorithm |
This field defaults to 'SHA-256'. You don't need to make any changes. |
Next, download the SAML certificate in Base64 format.
Make a note of the Login URL. You'll need both of these later.
Select Save.
You're ready to move on to the next step.
Enable single sign-on for Ometria
Now that you've configured your Microsoft account, please raise a request with the Ometria Support Team.
Select a general support request, then choose a "Request" query type and select SSO setup.
You'll be asked to provide information about your Microsoft account, as well as your Microsoft Login URL and the SAML certificate.
The team will let you know once your request has been processed and you can start using it.
Once you've confirmed it's working, consider making this feature mandatory for all users in your account.
Comments
0 comments
Article is closed for comments.