Configuring Single Sign-On (SSO) for MyVCM using SAML with Microsoft (Security Assertion Markup Language)

Using Security Assertion Markup Language (SAML), you can use your Microsoft Azure credentials to sign in to enterprise cloud applications via Single Sign-On (SSO).

Configuration using SAML

Using Security Assertion Markup Language (SAML), you can use your Microsoft Azure credentials to sign in to enterprise cloud applications via Single Sign-On (SSO).

Steps for Configuration

1. Login into Microsoft Azure portal at portal.azure.com using your administrator account and click on Azure Active Directory on the left

$C:\Users\vidit\Desktop\ADFS-SAML\step1.png$

2. This will open the Default directory. Click on “Enterprise Applications” on the left-hand side menu

$C:\Users\vidit\Desktop\ADFS-SAML\step2.png$

3. Click the link of “+ Add” on top menu

$C:\Users\vidit\Desktop\ADFS-SAML\step3.png$

4. Portal will display a list of applications. Click on “Add Your Own” on top

$C:\Users\vidit\Desktop\ADFS-SAML\step4.png$

5. Portal will display the wizard for creating a new custom app

$C:\Users\vidit\Desktop\ADFS-SAML\step5.png$

6. Select “Deploying an existing application” & enter name as “MyVCM”. Then click “Add” button

$C:\Users\vidit\Desktop\ADFS-SAML\step6.png$

7. Once the application is created successfully, portal will display options to configure the newly created app. Click on “Configure Single Sign-On” from this screen.

$C:\Users\vidit\Desktop\ADFS-SAML\step7.png$

8. In the configuration window, enter the following information

- Identifier
  - This is the SSO URL for SAML.
  - https://<your-domain>.myvcm.net/main/resultssogateway.aspx
- Reply URL
  - Same as Identifier
- User Identifier
  - Select “user.userprincipalname”
- Notification Email
  - Provide email address of your administrator managing SSO

9. Click “Create New Certificate” to proceed

$C:\Users\vidit\Desktop\ADFS-SAML\step8.png$

10. Portal will display attributes to define the expiry of certificate

- A certificate can be made available for a maximum of 2 years

11. Select an expiry date & click “Save” button.

$C:\Users\vidit\Desktop\ADFS-SAML\step9.png$

12. Once an expiry date is chosen, portal will display the certificate under heading” SAML Signing Certificate”.

- Once the certificate is created choose “Make new certificate active” and click on “Save”.

$C:\Users\vidit\Desktop\ADFS-SAML\step10.png$

13. Click on “Configure MyVCM” and then click on “SAML XML Metadata”.

- Download the XML metadata and save it. (This will be used in next step).

$C:\Users\vidit\Desktop\ADFS-SAML\step11.png$

14. Back in MyVCM:
15. In System Settings, select the edit icon next to Single Sign On

- Toggle Single Sign On to On
- Choose Microsoft
- Select SAML under ‘SSO Protocol’
- Upload your XML file from step 10
- Click Save to complete

Was this article helpful?