Introduction
This article explains how to set up SAML 2.0 integration between Sisense and Azure AD.
For more information about SSO in Sisense see
Configuration on Azure side
- Log in to your Azure account.
- Expand the left-hand menu:
- Go to Azure Active Directory:
- Select Enterprise applications:
- Under the All Applications section, select New application:
- Create your own application for ‘Integrate any other application you don’t find in the gallery’ purpose, name it Sisense:
- Under Overview -> Assign users and groups, configure access permissions for your SSO integration. Once configured, go back to Overview and switch to Set up single sign-on:
- Select SAML type of the SSO:
- Edit Basic SAML Configuration to configure
- Identifier (Entity ID) = Sisense,
- Reply URL (Assertion Consumer Service URL) = https://my.sisense.com/api/v1/authentication/login_saml_callback.
Once saved, go to Edit User Attributes and claims.
- Use Add New Claim to add the following attributes:
Claim Name Namespace Source Source attribute User.FirstNameLeave it empty Attributeuser.givennameUser.LastNameLeave it empty Attributeuser.surnameUser.emailLeave it empty Attributeuser.mail - Optional. Add a New Group Claim as per screenshot (you need to have synchronization with Microsoft Active Directory to synchronize groups):
- Return back to the Single Sign-On page and copy the following parameters:
Configuration on Sisense side
- Go to Admin tab -> Single-Sign On.
- Select SAML, turn the toggle on. Use parameters from Step 12 above for
- Remote Login URL = Login URL
- Remote Logout URL = Logout URL
- Public X.509 Certificate = Content of Certificate (Base 64) file (you can open it with a text editor).
