Microsoft Azure AD Single Sign-On (SSO) Integration


Microsoft Azure AD Single Sign-On (SSO)

  1. Create an ‘Enterprise Application’ in your AzureAD.
  2. Click on ‘Single Sign-On’ and then select ‘SAML’.
  3. Please make sure in the ‘User Attributes & Claims’ section you export

our required Claim Types:

  1. Optionally you can map the following Claim Types which will be precompleted during the registration process:

  1. In the SAML Signing Certificate section, ensure only one certificate exists
  • Signing Option: Sign SAML assertion and response 
  • Signing Algorithm: SHA-256

Please check you do not have Inactive certificates in the list as the process will likely fail. If possible, we recommend you regenerate the certificate and remove the old one as during our testing as sometimes the FederationMetadata contains wrong certificates. 

  1. Once you configured the SAML Signing Certificate please download the Federation Metadata XML and upload it into your PushFar admin panel directly. You can disable and update your configuration by re-uploading FederationMetadata.xml file at any time. 

We’re always here to help, provide guidance and answer any questions you may have about the portal or admin panel. If you need support, please email: support@pushfar.com or contact your account manager directly.