gitlink_help_center/docs/jackson/sso-providers/azure.md

---
title: Set up your own custom SAML application for Azure AD SAML
sidebar_label: Azure AD SAML
---

# Azure AD SAML SSO

In this section, we will show you how to set up your own custom SAML application for Azure AD SAML.

## Create Application

From your Azure Admin console, click **Enterprise applications** from the left navigation menu.

![img alt](/img/sso-providers/azure/1.png)

If your application is already created, choose it from the list and move to the section [Configure Application](#configure-application)

If you haven't created a SAML application, click **New application** from the top to create a new application.

![img alt](/img/sso-providers/azure/2.png)

From the next screen, click **Create your own application**. Give your application a **Name** and click **Create**.

![img alt](/img/sso-providers/azure/3.png)

## Configure Application

Select **Single Sign On** from the **Manage** section of your app and then **SAML**.

![img alt](/img/sso-providers/azure/4.png)

Click **Edit** on the **Basic SAML Configuration** section.

![img alt](/img/sso-providers/azure/5.png)

Enter the following values in the **Basic SAML Configuration** section on the next screen:

- **Identifier (Entity ID)**
- **Reply URL (Assertion Consumer Service URL)**

Replace the values with the ones you have received from SAML Jackson.

Click **Save** to save your changes.

![img alt](/img/sso-providers/azure/6.png)

## Attribute Mapping

Click **Edit** on the **Attributes & Claims** section.

![img alt](/img/sso-providers/azure/7.png)

You have to configure the following attributes under the **Attributes & Claims** section:

| Name                                                                 | Value                  |
| -------------------------------------------------------------------- | ---------------------- |
| `http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress` | user.mail              |
| `http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname`    | user.givenname         |
| `http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name`         | user.userprincipalname |
| `http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname`      | user.surname           |

See the screenshot below.

![img alt](/img/sso-providers/azure/8.png)

Go to the section **SAML Signing Certificate** section and download the **Federation Metadata XML**.

![img alt](/img/sso-providers/azure/9.png)

## Next steps

You've successfully configured your custom SAML application for Azure AD SAML. At this stage, you can assign users to your application and start using it.

## Resources

- [Azure Admin Console](https://portal.azure.com/)

:::tip
Got a question? [Ask here](https://discord.gg/uyb7pYt4Pa)
:::