Setting up Microsoft and Azure Active Directory SSO

you can configure your charthop organization with microsoft azure active directory sso generate your xml metadata file before configuring the microsoft/azure sso client to charthop, you will need to provide your federation metadata xml file which can be downloaded https //nexus microsoftonline p com/federationmetadata/saml20/federationmetadata xml set up sso in azure to set up sso for active directory in charthop, you must configure several settings in your azure account in the https //portal azure com/ , on the left navigation panel, select azure active directory select enterprise applications select + new application name the application charthop sso and select create under getting started, select option 2, set up single sign on under manage , select single sign on set the following in basic saml configuration identifier (entity id) charthop reply url https //api charthop com/saml/sso/{org slug} sign on url leave this field blank relay state https //app charthop com under manage , select users and groups select granted to use this application set up azure sso in charthop after you have configured your azure portal settings, enable the sso option and upload your generated metadata file to charthop f rom the left sidebar, select access from the sub menu, select settings scroll to the sso section on the page toggle both enable azure active directory sso and enable microsoft sso upload your federation metadata xml file under azure active directory idp metadata file content select save settings test the new login with azure active directory to charthop to test your azure active directory and microsoft sso configurations with charthop log out of charthop visit https //app charthop com/{org slug}/account/login where {org slug} is your charthop organization's unique slug confirm that your microsoft sign in displays on the login screen if you encounter any issues during or after testing your sso setup, please reach out to issues with alternative user emails in some cases, such as during an acquisition, you may have users in your company with alternative email domains than the ones used by the main company in general, a user's active directory email should be the same as the one used in their charthop accounts having different email domains may result in sso login issues microsoft suggests using in cases where users want to keep an original email domain https //www charthop com/pricing/ basic basic | | headcount planning headcount planning | compensation reviews compensation reviews | performance performance | engagement engagement | hris