Articles in this section

See more

Setting up Single Sign On (SSO) with Azure

Avatar
Aye
Updated
Follow

Purpose

The purpose of this article is to provide guidance in setting up Single Sign On with Azure for Outreach.

Intended Audience

  • Outreach Admins

Notes

  • During this procedure, you will have to navigate between the Azure and Outreach applications several times. It is recommended to have each open in separate browser tabs for convenience.

Procedure

In order to set up SSO with Azure, Outreach admin access, and a Microsoft/Office 365 account with Azure Active Directory admin access are required.

  1. Log in to Azure as admin.
  2. Click Azure Active DirectoryNew Application.
    Screen_Shot_2022-08-25_at_1.17.05_PM.png
  3. Click Create your own application.
  4. Enter an application name.
  5. Select Integrate any other application you don't find in the gallery (Non-gallery).
    Screen_Shot_2022-08-25_at_1.17.35_PM.png
  6. Open the new app and click Set up single sign-on.
  7. Select SAML.
  8. Navigate to Basic SAML Configuration and click Edit.
  9. Enter placeholder values in the Identity (Entity ID), and Reply URL fields.
    Note: These will later need to be updated to the correct values.
  10. Navigate to Attributes & Claims and click Edit.
  11. Click Unique User Identifier (Name ID).
  12. Ensure the following fields are configured correctly:
    Name identifier format: Email address
    Source: Attribute
    Source Attribute: user.userprincipalname
    Screen_Shot_2022-08-25_at_1.19.20_PM.png
  13. Click Save.
  14. Log in to Outreach as an admin.
  15. Click Org Settings.
    Screen_Shot_2022-08-25_at_1.18.47_PM.png
  16. Navigate to Sign in and password options.
  17. Click Edit.
  18. Click Single Sign On Add identity provider.
  19. Enter Azure SSO as the name.
    Screen_Shot_2022-08-25_at_1.21.07_PM.png
  20. In a different tab or window, navigate back to the Azure application.
  21. Download Certificate (Base 64).
    Screen_Shot_2022-08-25_at_1.22.01_PM.png
  22. Locate and copy down the Login URL and Azure AD Identifier fields.
    Screen_Shot_2022-08-25_at_1.20.25_PM.png
  23. Navigate back to the Add Identity Provider page in Outreach.
  24. Complete the Sign in URL and Identity Provider Entity ID fields with the Login URL and Azure AD Identifier fields respectively.
  25. Upload the Base 64 certificate.
  26. In SSO Settings click Edit.
  27. Make a note of the Setup Info field.
  28. Navigate back to Azure and Basic SAML Configuration.
  29. Click Edit.
  30. Take the Assertion Consumer Service (ACS) URL from Outreach and place it in the Reply URL (Assertion Consumer Service URL) field.
  31. Take the Service Provider Entity ID / Audience URI from Outreach and place it in the Identifier (Entity ID) field.
    Screen_Shot_2022-08-25_at_1.23.08_PM.png
  32. Click Save.
  33. In Azure click Users and groups.
    Screen_Shot_2022-08-25_at_1.24.16_PM.png
  34. Click Add user/group none selected.
  35. Enter User email addresses.
  36. Navigate back to Outreach. 
  37. Toggle Enable for Azure SSO.
    Screen_Shot_2022-08-25_at_1.23.45_PM.png
  38. Click Save.

In order to ensure the process is complete, sign out of Outreach, refresh the page, then sign in with your email address. On the login page, the SSO prompt will be available.

Related articles