This article describes how to set up an Azure application to create a SAML connection with Triton Digital’s authentication service in order to allow single sign-on (SSO) to Triton Digital applications.
Configuration Variable
This configuration variable is used throughout the setup procedure.
Connection name:
<connection-name>=<customer-name>-saml
E.g., for the publisher Blork Media, the<connection-name>would beblork-media-saml
This variable will be provided to you by Triton Digital.
Azure SAML Setup Procedure
Log in to Microsoft Azure.
Go to Entreprise applications and click + New application.
Click + Create your own application.
Enter the name of the SAML application you want to use. In this case, enter
TritonDigital SAMLSelect Integrate any other application you don't find in the gallery (Non-gallery) and click Create at the bottom.
On the left pane, under Manage, click Single sign-on and then select SAML.
Under Identifier (Entity ID), set up the identifier as per the following template:
urn:auth0:triton-digital-prod:<connection-name>
…where<connection-name>is the variable described above.Set the Reply URL (Assertion Consumer Service URL) to:
https://id.tritondigital.com/login/callback?connection=<connection-name>Click Save.
In the SAML certificate section, next to Certificate (RAW), click Download.
In the Set up <application> section, copy the URL for Login URL.
(Optional) In the left pane, under Manage and Users and groups, add the users and groups that should have access to the connection.
Outputs to Triton Digital
The following should be provided to Triton Digital after the Azure SAML application is created.
The application’s SAML certificate, in binary format.
The login URL.
The email domain(s) associated with the Azure account. e.g.: (@blorkmedia.com)