Go to YuJa
  1. YuJa Help Center
  2. EqualGround
  3. Integrations

Integrating Azure (SAML) into EqualGround

Avatar
YuJa Doc Team
  • Updated

Azure is a Microsoft product that provides a federated identity solution to connect users to applications within and outside institutions. EqualGround's flexible SSO Module Provider framework is designed to support a wide variety of identity solutions, enabling full integration of Azure Active Directory into your infrastructure in a few simple steps.

Integrating EqualGround to Azure Active Directory as an Enterprise Application

  1. Log into your Azure Active Directory Admin account.

  2. Select Enterprise Applications.

    The home page for Microsoft Azure shows enterprise applications.

  3. Click New Application.

    The new application button is shown.

  4. Click Create Your own application.

  5. Give your application a name (e.g. YuJa EqualGround), then click Create.

    Azure create your own application

  6. Your EqualGround application will now appear on the Enterprise Applications list within Azure. Select the application.

    Azure all applications

  7. You will need to add at least one user to the EqualGround application. From the left-side menu, select Users and Groups and then click Add user/group.

    The Add user/groups button is shown inside user and groups.

  8. After adding a user, click Single Sign-On from the left-side menu and click Edit within the Basic SAML Configuration panel.

    In the single sign-on tab within basic SAML configuration, the edit button is shown.

  9. Fill out the information as shown below and then click Save.

    The basic SAML configuration setup form.

    • Identifier: https://<institution>.equalground.yuja.com
      • Example: https://evergreen.equalground.yuja.com
    • Reply URL:  https://<institution>.equalground.yuja.com/api/sso/samlReceiveResponse
      • Example: https://evergreen.equalground.yuja.com/api/sso/samlReceiveResponse

  10. In the Attributes & Claims section, click Edit.

    The edit button for attributes and claims is shown.

  11. Click Add new claim.

    The add new claim button is shown in attributes and claims.

  12. Fill out Name, Source and Source attribute fields, and then click Save.

    The name, source, and source attributes fields are filled in manage claims.

    • Name: Role
    • Source: Attribute
    • Source attribute: Enter "user." without the quotes, and then enter the attribute used to track roles on your SSO.
      • Example: user.jobtitle

  13. In the Set up YuJa section, make note of the following information as it will be required:

    The login URL and logout URL are shown in the set up step

    • Login URL
    • Logout URL
      • Note: EqualGround only supports Non-Single Logout (i.e. logging out via a URL redirect to a single logout URL without additional parameters).
  14. Log in to your EqualGround admin account.
  15. In the left sidebar, select Integrations.

  16. In the Integration Type drop-down menu, select SSO-Azure. Fill out the required fields.

    EqualGround Azure SSO integration with general SSO details

    • General SSO Details
      • Azure SSO URL: The login URL noted in step 13.
      • Name ID Format: urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress
      • Remote Logout URL: The logout URL noted in step 13.
    • User Provisioning
      • Given Name Attribute: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname
      • Family Name Attribute: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname
      • Email Attribute: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress
      • Role Attribute: http://schemas.microsoft.com/ws/2008/06/identity/claims/role
    • Role Mapping
      • Admin: Enter your SSO role, equivalent to the admin role on EqualGround.
      • Standard: Enter your SSO role equivalent to the standard role on EqualGround.
  17. Click Save Changes. Once saved, you will be able to log in to EqualGround using your Azure integration. 

Related articles