SAML for JustLogin Using Microsoft Azure AD

Introduction

SAML or Security Assertion Markup Language is an identification process that allows you to login into multiple websites by just using one login credential. This creates ease of access and managing multiple login details for emails, CRMs, and other services will be more efficient.

This guide is separated into 2 major portions and each will need to be completed for the feature to work seamlessly for your JustLogin account

 

Terms to remember:

Identity Provider (IdP) – stores and authenticates the user’s credentials and sends data to the Service Provider. An example of IdP is Microsoft Azure Active Directory

Service Provider (SP) – These are the software that we use to perform our work-related tasks, like JustLogin, SalesForce, QBO, Dropbox, etc.

 

NOTE: For SAML to work, the usernames must be the email address. This is the only format that the system recognizes as the unique identifier. If you need to modify the usernames in your system and is unable to do so, please contact our support team: support@justlogin.com 

 

Part 1 – Enabling SAML on Service Provider (JustLogin)

The steps shown below is an example of how to setup JustLogin with Microsoft Azure AD

Step 1: Log in to your account

Step 2: Go to UserAdmin

mceclip4.png

Step 3: Head to the mceclip5.png tab at the top

Step 4: Click on the SSO sub-tab

mceclip6.png

Note: If you are unable to find this, please reach out to support@justlogin.com.

 

Step 5: The page you will see next is similar to below:

mceclip7.png

Step 6: Toggle the slider to enable SAML mceclip8.png

Step 7: The information on this portion is already set as a default upon enabling the SAML feature for your JustLogin account (Service Provider).

mceclip9.png

Step 8: On the right column are information that needs to be completed. These are data that can be taken from your identity provider (IdP), in this case Microsoft Azure AD

mceclip10.png

Part 2 – Setting up JLI on Microsoft Azure AD

Step 1: Log in to your Microsoft Office account as an administrator and click on the “admin” icon on the left side of the page

mceclip11.png

Step 2: Another tab will be opened, which is the admin panel.

mceclip12.png

Step 3: Click on Show All, you will see Azure Active Directory from the expanded panel. Please click on it

mceclip13.png

Step 4: The next page is Azure AD’s admin page

mceclip14.png

Step 5: Click on Enterprise Applications in the left side panel

mceclip15.png

Step 6: Click on New Application

mceclip16.png

Step 7: Click on Create your own application

mceclip17.png

Step 8: On the right-side panel, you can input the application name: JustLogin

mceclip18.png

Step 9: Click on the mceclip19.pngbutton at the bottom of the screen

Step 10: Once the application has been created, you will see the properties page next:

mceclip20.png

Step 11: Click on Assign users and groups – this is where you can enable the SAML/SSO for all users or groups.

mceclip21.png

Step 12: Click on Add user/group

mceclip22.png

Step 13: Click None selected

mceclip23.png

Step 14: And then on the right side, select the users whom you want to utilize the Azure AD SMAL/SSO

mceclip24.png

Step 15: Click mceclip25.png button at the bottom of the panel

Step 16: Click mceclip26.pngbutton at the bottom of the page

Step 17: Now that you have assigned user/s, click on Overview

mceclip27.png

Step 18: Next is to set up SSO. Click on Setup single sign-on

mceclip28.png

Step 19: On the next page, click on SAML

mceclip29.png

Step 20: This is where we can setup SSO with JustLogin. On the Basic SAML configuration field, click on the Edit icon

mceclip30.png

Step 21: Complete the fields. Information for these fields can be found in Part 1 of this guide

mceclip31.png

  • Identifier (Entity ID) – copy the information on JustLogin SSO page into this field

From JustLogin SSO setup page

mceclip32.png

Paste into Azure AD SSO setup page. After doing so, put a tick in the Default box.

mceclip33.png

  • Reply URL - copy the information on JustLogin SSO page into this field

From JLI SSO page, copy

mceclip34.png

Paste into Azure AD SSO setup page. After doing so, put a tick in the Default box.

mceclip35.png

Step 22: You can leave the rest of the fields blank and click on Save

mceclip36.png

Step 23: On to the next part, download the certificate and save it in your computer

mceclip37.png

Step 24: On the fourth portion of the setup page, complete the information based on the JustLogin SSO setup page:

Copy Login URL

mceclip38.png

Paste in Identity Provider Sign-in URL on JustLogin SSO Setup page

mceclip39.png

NOTE: Please do the same for the Identity provider Sign-out URL

Step 25: For the certificate, click on the box and upload the certificate you have just downloaded

mceclip40.png

Step 26: Click on mceclip41.png

Step 27: (Optional) Go to Properties

mceclip42.png

Step 28: You can upload JustLogin’s logo in this page, as well as copy the URL that you can share to all your users, so that users can create a shortcut into their desktop.

mceclip43.png

Once everything is set up, your assigned users will be able to access JustLogin by clicking on the All Apps icon mceclip44.png . JustLogin will show up from the list of apps they can access without the need to input their own login details.

Was this article helpful?
0 out of 0 found this helpful