This is a step-by-step guide on how to set up Azure Active Directory Identity provider and perform single sign-on (SSO) authentication with Creately to access Creately services.
Step 1: Create an Azure AD enterprise application
- Open Azure AD portal https://portal.azure.com
- Select Azure Active Directory under the Azure Services section or search Azure Active Directory on the search bar
Locate Azure Active Directory
3. Choose Enterprise applications from the left sidebar options
4. Choose New Application from the opened section
New Application
5. Pick the Non-gallery application type for the application
Non-gallery application
6. Type a name for the application. We recommend you to type Creately. And then click on the Add button.
Step 2: Configure SAML for Single Sign-on
1. To set up single sign-on in your AD Enterprise application, choose the section single sign-on from the left sidebar option. Next, choose SAML based authentication from the given authentication methods.
SAML based authentication
2. From the opened section, click on the edit icon to update the Identifier and Reply URL.
SAML configuration
3. In the opened section, fill the Identifier and Reply URL with the values given by Creately.
* Identifier (Entity ID):
For users from US Region:
urn:amazon:cognito:sp:us-east-1_NATJwEK9k
For users from EU Region:
urn:amazon:cognito:sp:eu-west-1_zN0n85NRb
For users from AU Region:
urn:amazon:cognito:sp:ap-southeast-2_0nUtBoFVD
* Reply URL (Assertion Consumer Service URL):
For users from US Region:
https://creately.auth.us-east-1.amazoncognito.com/saml2/idpresponse
For users from EU Region:
https://createlyeu.auth.eu-west-1.amazoncognito.com/saml2/idpresponse
For users from AU Region:
https://createlyau.auth.ap-southeast-2.amazoncognito.com/saml2/idpresponse
Identifier and Reply URL
4. Save the changes made above. Next, you can either download the Federation Metadata XML and provide it to us or can just share the App Federation Metadata URL link with us.
Metadata URL
Note: We recommend you provide the Metadata URL since the updates you make to the application in your Active Directory will be reflected on our end in real-time.
Step 3: Add users to access Creately services
Now you can add users to the created application.
- Select Users and groups from the left sidebar option
- Click on Add user
Add users to the app
3. Invite new users or select from existing - These users will be able to log in with this Azure AD account to the Creately app. When you add a user press Select and then Assign.
Login Test
Use the below URL to test the login on a web browser.
Users from the US region:
https://creately.auth.us-east-1.amazoncognito.com/login?response_type=token&client_id=7t8q2a01vn0eho5cavpmcni4a5&redirect_uri=https://creately.com/login/sso/success/
Users from the EU region:
https://createlyeu.auth.eu-west-1.amazoncognito.com/login?response_type=token&client_id=64ldogn1dbs5jg3ouje2pilf3h&redirect_uri=https://creately.com/login/sso/success/
Users from the AU region:
https://createlyau.auth.ap-southeast-2.amazoncognito.com/login?response_type=token&client_id=7ghfubmmi4ern71b06pitv9o8u&redirect_uri=https://creately.com/login/sso/success/
SCIM Provisioning
You can also set up for automatic provisioning of users in your AzureAD with Creately. Click here to learn more about it.
Comments
0 comments
Please sign in to leave a comment.