※Please have your company's security or information system staff perform the SSO setting, if possible.
There are 9 steps in setting up SSO on Azure Active Directory (Premium P1,P2).
※The Azure Active Directory edition needs to be Premium P1 or Premium P2.
※Please complete the setup on Azure Active Directory before registering members on Unipos.
0. Access Azure Active Directory
> Access https://portal.azu
re.com> Enter "Azure Active Directory" in the search field at the top of the screen
> "Azure Active Directory" is displayed as a candidate, so click it.
1. Click "Enterprise Application" on the Microsoft Azure Active Directory menu.
2. Click "New application."
3.Click "Create your own application."
> What's the name of your app? >"Unipos"
> Check "Integrate any other application you don't find in the gallery (Non-gallery)"
> Click "Create"
※On the conventional screen:"Non-gallery application"> Enter "Unipos" in the name field and click "Add."
4. Set up SSO
> Under "Manage" on the menu, click "Single sign-on"
> On the screen "Select a single sign-on method" > click "SAML."
> Click on the edit icon for Basic SAML Configuration.
> Enter information as follows and click "Save."
・Identifier: Copy & paste ""Entity ID"" from the SSO settings screen on Unipos.
・Reply URL: Copy & paste ""ACS URL"" from the SSO settings screen on Unipos.
・Sign on URL: Copy & paste ""Login URL"" from the SSO settings screen on Unipos.
> Click on the edit icon for User Attributes & Claims.
User Attributes & Claims
Click "Unique User Identifier (Name ID)."
・Value: Cjppse "user.mail" and save."
5. Enter the required information on the Unipos SSO setting screen from ③ SAML signing certificate and ④ Unipos setup.
< Information from ① to ③ on Azure AD >
①Certificate (Base64):Download and open it as a text file. Copy and paste the information to "Certificate (Base64-encoded)."
②Login URL : Copy and paste to "SSO URL."
③AzureAD Identifier : Copy and paste to "Entity ID."
↓
> Click "Set ID provider" in the SSO settings screen on Unipos.
> Enter the information from ① to ③ on Azure AD in "ID Provider"
> Click "Save"
6. Operation test (needs to be done by admins)
Log out of Unipos. > Log into Office365. > Choose Unipos from the Office365 app menu. > Log into Unipos via SSO.
If you can log into Unipos this way, SSO is successfully set up.
If you fail to log in, please confirm the settings and try again.
7. Add members from the Unipos admin screen
Click here to see how to add members.
8. Grant access to Unipos to users
> From 1, find and select the application for which you want to set single sign-on
> Users and groups
> Add user/group
Then, select users or groups to grant access to Unipos.
※In order to grant access to users, they have to be added through Unipos in advance (see Step 7 above).
This completes the process to set up SSO and add members.
※Members receive an invitation email from Unipos when they are invited (i.e. added to Unipos as users). The email includes a login link for SSO.
Click here for more details on this function:
https://support.unipos.me/hc/ja/articles/360031696051
---
Keyword: Single sign-on"