SAML Setup Steps for Cloud Customers using iGrafx Identity

For Azure AD (Microsoft Entra)

1. Go to https://portal.azure.com

2. Search and select Enterprise Application

3. Click New application

4. On the Browser Microsoft Entra Gallery page, click Create your own application
   

   

5. Enter a name you want to identify the application with

6. Select Integrate any other application you don't find in the gallery (Non-gallery)

7. Click Create

8. In your newly created Enterprise Application, click the Single sign-on blade to open it.

9. On the single sign-on blade, select SAML

10. Click Edit to configure your SAML

Basic SAML Configuration by region

For Europe/EMEA

1. Identifier (Entity ID of the Service Provider): https://id.igrafxcloud.eu/realms/igrafx

2. The specific Reply URL for your iGrafx Process360 Live will be provided to your by iGrafx
   Reply URL: https://id.igrafxcloud.eu/realms/igrafx/broker/XXX-idp-1/endpoint

3. Sign on URL: https://YOUR_SUBDOMAIN.igrafxcloud.com

4. Click Save

Rest of the World/NA

1. Identifier (Entity ID of the Service Provider): https://id.igrafxcloud.com/realms/igrafx

2. The specific Reply URL for your iGrafx Process360 Live will be provided to your by iGrafx
   Reply URL: https://id.igrafxcloud.com/realms/igrafx/broker/XXX-idp-1/endpoint

3. Sign on URL: https://YOUR_SUBDOMAIN.igrafxcloud.com

4. Click Save

End result should look like this and once this is configured

11. Commonly, your Attributes & Claims section is configured correctly and can be left unchanged.
    

    

12. You can then get the SAML metadata URL that you will need to provide to iGrafx by clicking the copy button in the section below
    

    

    
    

13. Finally, configure your groups and users that are allowed to use SSO with the created Enterprise application