Administration
SSO settings

Configuring SSO with Azure

2min

Before performing SSO configuration, make sure that the value of the domain parameter in the config.ini configuration file is the current domain name of the Passwork server. This is necessary so that IDP can download the https://<your-passwork>/sso/metadata file from your server. Your server must be configured to run over HTTPS protocol. Example parameter in config.ini: domain = https://passwork.example.com

1

Go to Enterprise applications section on Azure portal and click New application.

Document image




2

Then click Create your own application:

Document image




3

Enter a name for your application:

Document image

4

Open the app you created, select the Single sign-on option and choose the SAML method.

Document image

5

Then click Edit in Basic SAML Configuration block:

Document image

6

Go to Passwork account settings, open SSO settings and toggle SSO on:

Document image

7

Copy and paste the following fields from Passwork into Azure's Basic SAML Configuration dialog and save the changes:

Document image

Document image




8

Download the base64-format SAML certificate and paste it into the corresponding Passwork field:

Document image

Document image

9

Copy and paste the following lines into corresponding fields in Passwork:

Document image

Document image

10

Save the changes in Passwork, then add a user into the Azure app you created.

11

Test SSO by clicking SSO Login on Passwork's authorization screen:

Document image