Microsoft Entra ID SAML setup

Enable your Entra ID users to access Trelica with Single-Sign-On (SSO).


Add Trelica to Microsoft Azure

Create an Enterprise Application

Log in to Microsoft Azure and search for the Enterprise Applications service.

Enterprise applications.png

Click New application.

New enterprise app.png

Trelica is part of the Microsoft Entra gallery, which helps to speed up configuration. Search for it by name and then select the Trelica app:

Entra Gallery Trelica app.png

A panel will open on the right-hand side. At the bottom, click Create to add the app:

Create Trelica app.png

Assign a test user

To test the SAML SSO connection, assign an existing user to Trelica:

  1. Choose 1. Assign users and groups to assign a test user to the application.
    Assign users and groups.png
  2. Click Add user/group.
    Add user.png
  3. Under Users and groups, click None Selected to display the Users and groups list. Search for your user account and then click Select.
    Users and groups list.png
  4. Click Assign. The user is added to the list. 
    Test user.png

Configure SSO in Microsoft Azure

In the left-hand menu select Single sign-on and then select SAML.

SSO with SAML.png

In the Basic SAML Configuration box click Edit.

Edit basic SAML configuration.png

Get configuration information from Trelica

Azure needs the ACS URL from Trelica. You can see this on the SAML Identity providers page.

  1. Open Trelica in a new browser tab, as you will need to switch back to Microsoft Azure shortly.
  2. Log in to Trelica and go to Admin > Settings > Users > SAML providers.
  3. Copy the SAML Assertion Consumer Service (ACS) URL to the clipboard.
  4. Go back to the Microsoft Azure browser tab and paste Ctrl + V the ACS URL into the Reply URL field.
  5. Click Save and then close the Basic SAML Configuration pop-up.

Basic SAML configuration Reply URL.png

Configure Trelica

Scroll down to section 3, SAML Certificates, and copy the App Federation Metadata URL to the clipboard.

Copy App Federation Metadata URL.png

The next step involves putting the App Federation Metadata URL you copied from Microsoft Azure into Trelica:

  1. Return to your Trelica browser tab and go to Admin > Settings > Users > SAML providers).
  2. Click New. The New SAML Identity Provider dialog is displayed.
    New SAML provider.png
  3. In the Name field enter Entra ID and set the Metadata type to Metadata from URL.
  4. Click New. The New SAML Identity Provider dialog is displayed.
  5. In the Name field enter Entra ID and set the Metadata type to Metadata from URL.
  6. Paste Ctrl + Vthe App Federation Metadata URL you copied from Microsoft Azure into the Metadata URL field.
    New SAML identity provider.png
  7. Click Create.

Finalize configuration in Azure

Go back to the Microsoft Azure tab in your browser, click Test this application and then click Test sign in to test the connection with the current user account. Trelica is opened in a new browser tab. 

Test single sign on.png

Test the connection

To test that SAML SSO is working, open the Microsoft My Apps portal and click the Trelica icon.

Trelica is listed in the Microsoft My Apps portal.

After a short pause you should be logged in to Trelica.

Was this article helpful?

0 out of 0 found this helpful

Comments

0 comments

Please sign in to leave a comment.