Skip to main content

Single-Sing On

Lena Steiner
  • Updated
Follow

This document describes how to setup Single Sign On for the Smila ecosystem. Currently we are supporting Microsoft Azure Active Directory (AzureAD). Please do contact your local support in case of questions.

AzureAD Configuration

This section describes the required configuration to integrate AzureAD as a Smila single sign-on provider:

App registration

First you need to register an new App for Smila in your Azure AD portal:

  1. Open and login to the Azure Portal
  2. Select “Azure Active Directory”
  3. Select “App registrations”
  4. Select “New registration”Bild-4.png
  5. Fill in information for Smila SSO
    • Provide a name for the application. For example “smila.jdm.de”
    • Push “Register”
  6. Configure newly created App registration

Bild-2.png 

        • Click “Add certificate or secret”
          • Enter description. Example: “smila.jdm.de”
          • Enter an expiration date
          • Push “Add”
          • After creation copy the “Value” and “Secret ID” fields and provide them to JDM for integration.

letztes Bild.png

NOTE: Secrets can only be viewed immediately after creation. Make sure you save this information.

  •  
  •  

Users

Make sure the email property if the AD users match with the smila system. In the current implementation users must be manually added and configured in the smila cloud.

 

Summary

The following information is required by JDM for SSO integration:

Property Name Example
Application (client) ID 8f518414-1510-40fc-bd6c-67519ef410a1
client secret value 3.R8Q~BYg_DOL7ApRR3Dpkp7RmOFTF~6xueD4bcu
OpenID Connect metadata document URI https://login.microsoftonline.com/3f4a6ec6-fb8b-4404-8ae5-b17828289c27/v2.0/.well-known/openid-configuration

 

For debugging and diagnostic purposes, the “OpenID Connect metadata document” URI from the Azure portal is helpful. It can be queried in the “App registrations” section under “Endpoints”.

 

Bild-3.png

Login with Single-Sign On

After the technical preparation is finalized, you can login using the credentials and the following URL.

  • https://<smila-host>/MVC/Account/SsoLogin
    • <smila-host> is to be replaced for "nomeco.dk" or "smilaservice.fi"

 

Related articles

Comments

0 comments

Article is closed for comments.

Powered by Zendesk