# Configure Azure AD for sso

### Create an application

* Go to [Azure portal](https://portal.azure.com/) and navigate to [Azure Active Directory](https://portal.azure.com/#view/Microsoft_AAD_IAM/ActiveDirectoryMenuBlade/~/Overview)
* Click on the Enterprise Application item on the left-hand side navigation pane.
* Under the Enterprise application section, create a new application by clicking the ‘+ New Application’ button on the top menu bar.
* Then, click on the ‘Create your Own application’ button on the top menu bar.
* Provide a name to your application and make sure to choose the ‘Non-Gallery’ application mode.

<figure><img src="/files/2MlDVEbzo46ExEx1h3vv" alt=""><figcaption></figcaption></figure>

* Click on create.
* Once the application has been created, click on the ‘Single sign-on’ option on the left-hand side navigation pane.
* By default, SSO feature is disabled. Since we need to proceed with SAML based login, click on the SAML widget. Then you would be directed to SAML configurations.
* Fill the following values into their respective SAML configurations in the Azure AD.

```
Identifier (Entity ID) -> Entity ID which you have generated in above step in the Lineaje Application

Reply URL (Assertion Consumer Service URL) -> Post callback URL which you have generated in above case.
```

### Configure SAML

<figure><img src="/files/3hgNKL5ABQDuExCT8dXx" alt="" width="563"><figcaption></figcaption></figure>

* Once above configurations are done, click on the ‘Users and Group’ section on the left-hand side navigation pane to allow users who can use above configured SAML configurations to login to their target platform.

<figure><img src="/files/xK6MtbZQ1N4wLq48fhSS" alt=""><figcaption></figcaption></figure>

* Click on the ‘None Selected’ and select ‘All Users’ to allow every available user in the AD to allow access to the application. Alternatively, you can choose individual users to allow access.

<figure><img src="/files/FbfY5lKQFjoT3P3xDCxq" alt=""><figcaption></figcaption></figure>

Go Back to ‘Single sign-on’ from left-hand navigation menu and click on the ‘Test’ button to test your SAML configurations.

With the Auth0 configuration which we have done so far, if you were able to get following response in the web browser which means your Azure side configurations are working in a proper way.&#x20;

***Copy the URL in the browser and have it handy. This will be required in the next step.***

<figure><img src="/files/hRMBX5elCprzhsX2KCVi" alt=""><figcaption></figcaption></figure>

### Configure Lineaje Application with SAML details

* Copy the SAML certificate
* Copy the Login URL

<figure><img src="/files/mTkbOvL6ldPpoU22u7Ry" alt=""><figcaption></figcaption></figure>

* [Login ](https://app.veedna.com/signin)to Lineaje application.
* Goto Setting -> Authentication -> Edit Configuration -> Click on Single Sign On
* Enter the Sign-in url with the LoginURL

<figure><img src="/files/5dzXlG9ZmvE6m00fNrRa" alt=""><figcaption></figcaption></figure>

* Upload the SAML .cer file

<figure><img src="/files/Sg0IFZRa2TfJmystJIQ4" alt=""><figcaption></figcaption></figure>

* Veirfy that the callback url is the same as the one during [SAML configuration](#configure-saml)

<figure><img src="/files/zNfzwZXqpHBtCDzCZhwA" alt=""><figcaption></figcaption></figure>

* Click on Enable sso.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.veedna.com/getting-started/create-an-account/configure-azure-ad-for-sso.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.