1. Clumio
  2. Knowledge Base
  3. Administration and Security
  4. Authentication and Access

Articles in this section

See more

Configuring SSO for Azure

Hirdesh Ahuja
  • Updated

The Clumio service can integrate with Azure for seamless user authentication. Please follow the below steps to configure Azure IDP as a Single Sign On service for Clumio.

Ensure that you have the following before you start configuring Azure

  • Azure account with admin privileges

  • Clumio account with Super Admin Role

Steps to enable Azure Integration with Clumio

 In Azure

  1. Log into your Azure portal and click on Azure Active Directory.
  2. Navigate to Enterprise Applications from the left-hand side tabs. 
  3. Click on the +New application at the top.
  4. Click on the +Create your own application at the top.
  5. Provide a name for your application and click on Create.
  6. Click on Set up Single Sign-on.6.png

  7. Select SAML
    7.png

  8. Under Basic SAML Configuration click Edit.
    Screenshot_2023-03-06_at_6.36.29_PM.png

  9. Get the Audience Restriction, Assertion Customer Service (ACS) URL(Reply URL), and Sign-On URL from Clumio (see step 4).
  10. Under Basic SAML Configuration, Assertion Customer Service (ACS) URL, and Sign-On URL obtained from the Clumio dashboard, as shown below. Then click on Save.
    Screenshot

  11. After Save, close the Basic SAML Configuration section. Go down under the SAML Signing Certificate section and copy the App Federation Metadata Url field OR download the Federation Metadata XML. This will be needed in Clumio
    10.png
  12. Click on Edit under the User Attributes and Claims section.
  13. Ensure that the Required Claim maps to Email Address and the value is either user.mail or user.userprincipalname based on your organization's use
  14. Click Save.
  15. The Azure side configuration is done! Over to Clumio.

In Clumio

  1. Log in to Clumio.
  2. Navigate to Settings > Access Management > Authentication (SSO/MFA)
    Screenshot_2023-03-06_at_5.51.17_PM.png
  3. Click on "Configure SSO" under Strategy.
    Screenshot_2023-03-06_at_5.51.35_PM_copy.png

  4. Copy the Audience Restriction, Assertion Customer Service (ACS) URL, and the Sign-On URL. This will be needed for the IdP side setup. 
    Screenshot

  5. Scroll down and upload the metadata retrieved from the IdP. You can either use the URL, upload the metadata XML file, or configure it manually. 
    Screenshot_2023-03-06_at_5.52.08_PM.png

  6. Now click on Save Configuration.
  7. Click on Test with my Account - This should open a new tab to test the SSO connection. 
  8. Once the above step is successful, click on Activate SSO. Please note that this step is important for SSO enablement. 
  9. Check the box to send emails if you wish to notify all users of the SSO enablement, else click enable.

Note:

  • For any user to utilize Clumio login through Azure SSO, the user needs to be explicitly added in Clumio UI > Settings > Access Management > Users and should be assigned to Clumio SAML Application created in Azure Directory.

Contact:

Please contact support@clumio.com in case of any clarifications or questions.

 

Related articles

Comments

0 comments

Please sign in to leave a comment.