Secure Mobile Access 100 10.2 Administration Guide

Configuring SAML Authentication with Azure

  1. Navigate to https://portal.azure.com, create a trial/paid account, and register a domain.
  2. Log in to your Azure account using admin credentials.
  3. To add SMA application to your Azure account:
    1. On the Applications menu of the directory, click + New application.

    2. Select Non-gallery application to add your own application.

    3. In the Add your own application dialog, enter a display name.
    4. Click Add.
    5. Assign users to the new added SMA application:

      • Click Users and groups below Manage.
      • Click + Add user.
      • Select a User and Role.
      • Click Assign.

    6. Navigate to Enterprise applications in AZURE and select the application you have created “Sma100 VPN”.
    7. Click single sign on and select SAML.
    8. Configure basic SAML configurations:

      Issuer URL: https://{appliance ‘s IP address or HostName}.

      Reply URL: https://{appliance ‘s IP address or HostName}/ api /v1/logon/saml2ssoconsumer.

      SSO URL: https://{appliance ‘s IP address or HostName}/ api /v1/logon/saml2ssoconsumer.

    9. Click Save.
    10. Download the Certificate.
  4. To configure SAML on SMA appliance:
    1. Import SAML Certificate on System > Certificates.
    2. Create a SAML domain.
    3. Enter a valid domain name.
    4. Appliance ID is https://{appliance ‘s IP address or HostName}.
    5. Server ID is Azure AD identifier value present in Azure.
    6. Authentication service URL is Login URL value present in Azure.

      You can now proceed with authentication from Virtual Office portal and NetExtender. When you select Azure domain in the login page, you are redirected to the Azure login, and after providing correct credentials, the authentication is successful.

Was This Article Helpful?

Help us to improve our support portal

Techdocs Article Helpful form

Techdocs Article NOT Helpful form

  • Still can't find what you're looking for? Try our knowledge base or ask our community for more help.