Link Search Menu Expand Document

Elqano SSO application

Table of contents
  1. What user information are we using?
  2. How to set up Elqano SSO application

What user information are we using?

As explained in the logical components overview, Elqano is using Azure Active Directory SSO (via SAML) to authenticate your users.

The only information about users we are using are:

  • The email
  • The user UUID
  • The first name
  • The last name
  • The profile picture
  • The assigned role

All these values are coming from your Azure Active Directory and will never be exposed outside of Elqano.

How to set up Elqano SSO application

Start by navigating to the Entreprise applications service.

Entreprise Application Tab

Create a new entreprise application.

Create Entreprise Application

Search and select the already registered Elqano SSO application.

Browse Elqano Application

Create your new Elqano SSO application.

Create Elqano Application

Navigate to the Set up Single Sign On tab.

Set Up SSO

Select the desired SSO method: SAML authentication.

Select SSO method

Edit the application Basic SAML Configuration.

Edit SAML parameters

In short, fill:

  • Identifier, pattern: elqano-{your_entreprise_name}
  • Reply URL, pattern: {your_web_app_link}/saml/callback
  • Add an extra reply URL, pattern: {your_web_app_link}/integration/teams/callback
  • Sign on URL, pattern: {your_web_app_link}

Fill SAML parameters

Edit the application attributes & claims.

Edit Attributes and Claims

Add new application claim.

Add New Claim

Fill claim fields and save it.

Fill Claim Fields