For Microsoft Entra ID/Azure AD - SAML Setup with iGrafx Identity

For Azure AD (Microsoft Entra)

1. Go to https://portal.azure.com

2. Search and select Enterprise Application

3. Click New application

4. On the Browser Microsoft Entra Gallery page, click Create your own application
   

   

5. Enter a name you want to identify the application with

6. Select Integrate any other application you don't find in the gallery (Non-gallery)

7. Click Create

8. In your newly created Enterprise Application, click the Single sign-on blade to open it.

9. On the single sign-on blade, select SAML

10. Click Edit to configure your SAML

Basic SAML Configuration by region

For Europe/EMEA

1. Identifier (Entity ID of the Service Provider): https://id.igrafxcloud.eu/realms/igrafx

2. The specific Reply URL for your iGrafx Process360 Live will be provided to your by iGrafx
   ACS/Reply URL: https://id.igrafxcloud.eu/realms/igrafx/broker/YourTenant-idp-1/endpoint

3. Sign on URL: https://YOUR_SUBDOMAIN.igrafxcloud.com

Rest of the World/NA

1. Identifier (Entity ID of the Service Provider): https://id.igrafxcloud.com/realms/igrafx

2. The specific Reply URL for your iGrafx Process360 Live will be provided to your by iGrafx
   ACS/Reply URL: https://id.igrafxcloud.com/realms/igrafx/broker/YourTenant-idp-1/endpoint

3. Sign on URL: https://YOUR_SUBDOMAIN.igrafxcloud.com

4. Click SAVE and the end result should look like this:
   

11. Commonly, your Attributes & Claims section is configured correctly and can be left unchanged.
    

    

12. You can then get the SAML metadata URL that you will need to provide to iGrafx by clicking the copy button in the section below
    

    

    
    

13. Finally, configure your groups and users that are allowed to use SSO with the created Enterprise application

14. After sending the metadata URL to iGrafx, the iGrafx team will configure the iGrafx Identity Solution and will let you know when it’s ready to be tested.