search

SAML with Microsoft Entra ID

This guide will help you enable SSO from Microsoft Entra ID so your users can securely log into Rely.io without creating new credentials.

circle-info

This process can only be fully achieved in collaboration with our team.

Exact instructions are provided in the impacted sections below where this exchange of information is required.

hashtag
Create a new SAML App in Microsoft Entra ID

In order to connect your Microsoft Entra ID directory to Rely.io you need to create a dedicated App by following the steps below.

  1. Log into your Microsoft Azure Portalarrow-up-right. Please ensure you have permissions to create Enterprise Applications and configure SSO. If you don't have the necessary permissions please reach out to an Administrator.

  2. In the search bar, type Entra ID and select Microsoft Entra ID to navigate to the correct management panel.

Navigate to Microsoft Entra ID

  1. In your directory page go to Enterprise Applications.

Navigate to Enterprise Applications

  1. On the top menu bar select New Application and then Create your own application.

Create new application

  1. Now, specify the name that you would like to give to your application and select the last option as we want to integrate with an application you don't manage and doesn't exist in the Entra Gallery.

Finalize creation process

  1. Now that the Enterprise Application is created we can start the SSO configuration with SAML. Go to Single sign-on > SAML.

Select SAML for SSO method

  1. To proceed with the SSO configuration is important that you specify the Identifier and the Reply URL on the Basic SAML Configuration section. Click the Edit button and provide the following values:

    1. Identifier (Entity ID): urn:auth0:relyio:<connection-name>

    2. Reply URL (ACS URL): https://auth.rely.io/login/callbackarrow-up-right

Configure Basic SAML Configuration

  1. (Optional) On step 2 - mapping - you can map additional properties such as groups. By default the email, full name, first name and last name are already mapped.

Add group information to your SAML payload

  1. Now we need to gather some information to provide Rely.io's team for configuration on their side. Start by downloading your certificate in .pem format. On step 3, click on Edit, then select the three dots next to the Active certificate and down the PEM certificate.

Download .pem certificate

  1. Then, copy the Login URL and store it somewhere safe.

Copy Login URL

  1. Send the SSO URL and Certificate to Rely.io via one of the following means:

    1. Direct outreach to your dedicated Customer Success Manager

    2. In Slack via your Dedicated Channel (for Enterprise customers)

    3. Via your in-product chat bot

    4. Via email to [email protected]

  2. You will receive in return a confirmation once all configurations are done on Rely.io's side.

  3. Once you get the confirmation, move to the final step of the wizard to test that the configuration worked.

That's it! You're SAML Connection to Rely.io from Microsoft Entra ID is now ready for your users to use.

PreviousSAML with Google WorkspaceNextSAML with Okta

Last updated