---
title: "Set up SSO with Microsoft Entra"
slug: "setting-up-sso-using-azure-saml"
updated: 2025-02-10T20:19:21Z
published: 2025-02-10T20:19:21Z
excludeFromSearch: true
excludeFromExternalSearch: true
---

> ## Documentation Index
> Fetch the complete documentation index at: https://help.tritondigital.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Setting up SSO using Azure SAML

This article describes how to set up an Azure application to create a SAML connection with Triton Digital’s authentication service in order to allow single sign-on (SSO) to Triton Digital applications.

## Configuration Variable

This configuration variable is used throughout the setup procedure.

- **Connection name**: `&lt;connection-name&gt;` = `&lt;customer-name&gt;-saml` E.g., for the publisher Blork Media, the `&lt;connection-name&gt;` would be `blork-media-saml` *This variable will be provided to you by Triton Digital*.

## Azure SAML Setup Procedure

1. Log in to [Microsoft Azure](https://portal.azure.com/).
2. Go to **Entreprise applications** and click **+ New application**.
3. Click **+ Create your own application**.
4. Enter the name of the SAML application you want to use. In this case, enter `TritonDigital SAML`
5. Select **Integrate any other application you don't find in the gallery (Non-gallery)** and click **Create** at the bottom.
6. On the left pane, under **Manage**, click **Single sign-on** and then select **SAML**.
7. Under **Identifier (Entity ID)**, set up the identifier as per the following template:

`urn:auth0:triton-digital-prod:&lt;connection-name&gt;` …where `&lt;connection-name&gt;` is the variable described [above](/docs/setting-up-sso-using-azure-saml#configuration-variable).
8. Set the **Reply URL (Assertion Consumer Service URL)** to: `https://id.tritondigital.com/login/callback?connection=&lt;connection-name&gt;`
9. Click **Save**.
10. In the **SAML certificate** section, next to **Certificate (RAW)**, click **Download**.
11. In the **Set up <application> section**, copy the URL for **Login URL**.
12. (Optional) In the left pane, under **Manage** and **Users and groups**, add the users and groups that should have access to the connection.

## Outputs to Triton Digital

The following should be provided to Triton Digital after the Azure SAML application is created.

- The application’s SAML certificate, in binary format.
- The login URL.
- The email domain(s) associated with the Azure account. e.g.: (@blorkmedia.com)