Articles on: My Account

Configuring Single Sign-On with Microsoft Entra

This article guides you through the steps needed to integrate Microsoft Entra ID (formerly Azure Active Directory) with CyberComply for SSO (single sign-on).


Prerequisites
  • You must be logged into CyberComply as an organisation administrator for the organisation that you are configuring SSO for.
  • You should be familiar with and have appropriate permissions to configure your Microsoft Entra account.


Configure SAML


CyberComply


  1. Navigate to your Account Summary page.
  2. Enable the toggle switch for Single sign-on configuration:

  1. Select the SAML SSO metadata - download option and save the file to your device.


Microsoft Entra


  1. Select Enterprise applications.
  2. Select New application.
  3. Select Create your own application.
  4. Provide a name for the application and verify that the (Non-gallery) option is selected. Click Create.

  1. Once created, select Single sign-on.
  2. Select SAML.

  1. Select Upload metadata file and upload the file you previously downloaded from CyberComply.
  2. This will populate the Identifier and Reply URL fields. Click Save.

  1. Verify in Attributes & Claims that emailaddress is included.

  1. Make a note of the App Federation Metadata Url. You will need this later. It will usually start with https://login.microsoftonline.com/.
  2. Download the Certificate (Base64) and save to your device.


The Microsoft Entra application is now configured.


CyberComply


  1. Paste the App Federation Metadata Url into IDP metadata URI.
  2. Click Upload IDP Signing certificate and select the Certificate (Base64) you previously downloaded.
  3. Click Save.


Assign users


CyberComply


  1. Add users as required to CyberComply by clicking the + icon in the Users panel.

  1. Provide an email address and role. Click Invite.
  2. The user will receive an email to complete the invitation process. They will set a username and password but will not need them when logging in via SSO.


Microsoft Entra


  1. Select Users and groups from the application you previously created.

  1. Select Add user/group and assign all required users. The email address must match the one provided to CyberComply.


Logging in


CyberComply


  1. Enter your email address as normal.

  1. Select Login using work/school account to initiate the SSO flow.
  2. Once authenticated the user will be returned to CyberComply and automatically logged in.










Updated on: 08/07/2024

Was this article helpful?

Share your feedback

Cancel

Thank you!