SAML Azure integration with WNM for Guest users

This article shows how to configure SAML Azure for Guest Users on WNM

1. Access your Azure console
2. Select Enterprise applications
   
3. Select New application
   
4. Select Create your own application
   
5. Insert the app name and click Create
   
6. In the tab "Set up single sign on" click on Get Started.
   
7. Click SAML
   
8. In the "Basic SAML Configuration" tab click Edit
   
9. Add the Identifier as https://auth.mysonicwave.com/lhmapi/saml/metadata/ and Reply URL (Assertion Consumer Service URL) and Sign On URL as https://auth.mysonicwave.com/lhmapi/saml/?acs and click Save - Guide as Reference - https://www.sonicwall.com/support/technical-documentation/docs/wireless_network_manager-administration_guide/Content/Policies/policies-ssidpolicies-signon-saml.htm
   
10. In the User and Groups tab click Add user/group
    
11. Select None Selected in order to add users
    
12. Select the users to be added and click Select
    
13. Click Assign
    
14. In the Single sign-on tab Under SAML Certificates, click Download the certificate as Certificate (Base64)
    
15. Login to WNM and navigate to Certificates
    
16. Click Import
    
17. Select Import a X.509 public certificate (without private key) from a PEM encoded file (used in Guest Portal SAML Authentication), add the certificate name, description and select the file downloaded in the step 14
           
18. Navigating to Policies | SSID Policies add a new SSID or edit the existing one
    
19. Give a name to the SSID and set the Authentication Type as open 
    
20. In the Guest Portal tab select Sign On with SAML
    
21. Copy the Microsoft Extra Identifier (from Azure) paste to the WNM Server ID (or IssuerURL) and copy Login URL(from Azure) and paste to Authentication Service (Idp SSO) URL (WNM) select the certificate imported and click Save
    
22. Now you can connect to the SSID and you should be redirected to the SonicWall Guest Portal login page