After you configure Azure Active Directory (AD) as an SMA Authentication Server, you need to add the SMA
application to the Azure AD service.
Login to Azure Portal.
Select Azure Active Directory > Enterprise applications.
Click Add application.
Under Add your own app, choose Non-gallery application.
Enter the name of the application and click Add.
In the Manage section, select Single sign-on.
Under Single Sign-on Mode, select SAML-based Sign-on.
Enter the Identifier (Entity ID) using a format similar to
Enter the Reply URL using a format similar to
If needed, select Show advanced URL settings and enter the Sign on URL using a format similar to
Select the appropriate User Identifier.
Create a new certificate, or download an existing one, for uploading to the SMA application. You can use the default certificate signing settings.
On the All applications page, click on the application for the SMA.
Click User and groups and add and assign users to the application.
Navigate to Enterprise Application > SMA application > Single Sign-on.
At the bottom of the page, select Configure SMA. The SSO configuration details to be used for SMA should be displayed.