Skip to main content
All CollectionsScreenloop Integrations
Authentication using SAML2 - Azure Active Directory provider
Authentication using SAML2 - Azure Active Directory provider
Updated over 2 years ago

If your business supports SAML2 providers, then you can leverage Automatic Sign-up so any user that belongs to your organisation is able to automatically create a Screenloop account.

Navigate to Settings > Authentication and choose the SAML2 provider for automatic sign-up.


Setup SAML2 using Azure Active Directory provider

If you want your organization to sign in with a SAML2 Identity Provider, select the SAML2 Setup and follow the next steps:

1. Create an Enterprise Application

On the Azure portal, search or select the "Enterprise applications" option and then select "New application".

Click on "Create your own application" on the top left side and input the name "Screenloop" and the "Integrate any other application you don't find in the gallery (Non-gallery)" option from the list.

Note: it may take up to 2 mins for the new app to be created, according to Microsoft.

After it's created, you will be redirected to the application overview page. Here you need to set:

  • Users and groups - assign users and groups to the new application;

  • Single Sign-On setup:

    • Select SAML on the single sign-on method

    • On the Basic SAML Configuration click Edit and fill in the following information:

      Example:

    • On the Attributes & Claims option click Edit and choose "Add new claim" to input the following information:

      • Name: first_name

      • Name format: Omitted (default)

      • Source: Attribute

      • Source attribute: user.givenname

    • Select "Add new claim" again and input the following:

      • Name: last_name

      • Name format: Omitted (default)

      • Source: Attribute

      • Source attribute: user.surname

  • Download the Federation Metadata XML file so you can upload it to Screenloop:

2. Setup SSO in Screenloop

Sign in to your Admin account in Screenloop and navigate to Settings > Authentication.

On the SSO via SAML2 page, click Upload File and upload the Metadata XML you downloaded.

Once uploaded, in the Provisioning section, click on the toggle to enable Just In Time Provisioning, so that provisioned accounts are created for users whenever they try to sign in for the first time using this authentication method.

You have now enabled users to sign into Screenloop with AAD. Congratulations!

After all the steps above are done, you will be able to test if everything is working as expected. To do so, go back to the Azure portal and click on the Test button at the bottom of the page and Test single sign-on with Screenloop.
โ€‹

If you are able to log in, everything is set up correctly. If not, please check that all steps and information have been correctly filled in. If you still encounter some errors, please contact us at support@screenloop.com.

Did this answer your question?