SAML configuration for Microsoft Azure
Supported in:
Prerequisites
Make sure to set up the SAML account in Azure beforehand using the following documents as reference.
- Create and assign a user account in Azure Active Directory
- How to create an app in Azure
- How to configure the SAML provider in Azure
Configure information in the Microsoft Azure portal
- Sign in to the Azure portal.
- Navigate to Enterprise Applications.
- Locate your company's SAML sign-on app.
- In the left sidebar, select Single Sign-on.
- In Section 1, Basic SAML Configuration, configure the
following fields and save the changes:
- Identifier (Entity ID):
https://platform_Address/Saml2/
- Reply URL (Assertion Consumer Service URL):
https://platform_Address/Saml2/ACS
- Sign on URL:
https://platform_Address/Saml2/
- Identifier (Entity ID):
Keep the Azure portal open in a separate browser window because you will need to copy and paste information from the Azure portal to the Google Security Operations SOAR platform.
Configure Azure in Google Security Operations SOAR
- Navigate to Settings > Advanced > External Authentication.
- Create a new SAML provider.
- In the Provider Type menu, select Custom SAML Provider.
- Enter a provider name. This can be any name you want. For example,
mycompany_Azure
.
The other fields are filled using information from the Azure portal as follows:
IDP Metadata- Return to the Azure portal.
- In the SAML Certificates section, locate the Federation Metadata XML field.
- Click Download and save the XML file.
- Return to the Google Security Operations platform.
- In the IDP Metadata field, upload the XML file you just got from the Azure platform.
- Return to the Azure portal.
- In the Set up \
section, locate the Microsoft Entra Identifier field. - Copy the data in the field.
- Return to the Google Security Operations platform.
- Paste the value into the Identifier field.
- Return to the Azure portal.
- In the Basic SAML Configuration section, locate the Sign On URL field.
- Copy the data in the field.
- Return to the Google Security Operations platform.
- Paste the value into the ACS URL field.
- Return to the Azure portal.
- In the SAML Certificates section, locate the Certificate (Base64) field.
- Click Download and save the certificate somewhere accessible.
- Return to the Google Security Operations platform.
- In the Provider Public Certificate field, upload the certificate you just got from the Azure platform.
Legend
Field Name in Google Security Operations SOAR | Field Name in Microsoft Azure |
---|---|
IDP Metadata | Federation Metadata XML |
Identifier | Microsoft Entra Identifier |
ACS URL | Sign on URL |
Provider Public Certificate | Certificate (Base64) |