SAML SSO: Azure Active Directory integration

Use Azure Actice Directory to authenticate users in your workspace

In this tutorial you will see how you can integrate Tability with Azure Active Directory.

1. Enable SSO via SAML in Tability

Go to your workspace settings in Tability. Go to the SSO screen and select SAML SSO as the authentication method.

Enable SSO

Keep this screen open, we'll need it later.

2. Add a new application for Tability in the Azure Actice Directory

Open a new tab and go to your Azure Active Directory. Click on Enterprise applications in the sidebar.

Go to Enterprise applications

Create a new applicaiton by clicking on New Application in the Enterprise applications screen.

Create a new application

In the AD Gallery, click on the option to Create your own application. Add Tability as the name for the app and create your app.

Create your own application

3. Configure SAML in Azure Active Directory

In your application, go to the Single sign-on screen, and select SAML.

Go to the Sign on section

Edit the Basic SAML configuration, and copy the value from your workspace SSO settings in Tability.

  • Identifier (Entity ID): copy the value of the SP Entity ID (https://auth.tability.io/saml/metadata/<workspace>)
  • Reply URL: copy the value of the SP Consumer URL: (https://auth.tability.io/saml/consume/<workspace>)

Configure the basic SAML settings in Azure Directory

Save the settings

4. Configure SAML in Tability

Download your certificate

Download the SAML signing certificate from Azure Active Directory.

Copy the content of the certificate, including the BEGIN CERTIFICATE and END CERTIFICATE to the IDP certificate field in Tability.

Copy the Login URL from Azure Active Directory, and paste the URL into the IDP SSO URL field in Tability.

Copy Azure Directory params to Tability

Clikc on Update to save the settings.

Sign in via Azure Active Directory to finalize your configuration.

Once SAML is activated, it will be the only authentication method for your workspace. Make sure that your admin account in Tability is associated to a user in your Azure Directory, otherwise you might lose access to your workspace settings.

To finalize the integration you need to sign in once via SAML SSO to validate your configuration.

Sign in to activate SSO via SAML

Click on the Log in via SSO to sign in.