With SSO (Single Sign-On), users in your organization can easily authenticate using accounts they already have within Azure.
Prerequisites
To have SSO enabled for your organization a team or an enterprise plan is required (see pricing). You also need to create/have Enterprise Managed application created in your in Azure Console .
Supported features
IdP-initiated SSO
SP-initiated SSO
Just-In-Time provisioning
Configuration steps
Log in to yours Azure Application view page and select "Single sign-on".
Select a single sign-on method:
Select SAML method (click tile).
Set up Single Sign-On with SAML:
Fill following form with data:
a) Basic SAML Confiuration (click Edit button)
Entity ID: https://sellercrowd.com/api/sso/<your-organization-id>/Sign on URL: https://sellercrowd.com/login/sso/
where <your-organization-id> is an arbitrary string which identifies organization, e.g.: Acme Incorporated could use "acme" as an identifier.
Confirm by clicking Save.
b) Attributes & Claims (click Edit button)
Required claim: user.mail
Additional claims: givenname, surname
Important: use same schemas as presented on picture.
Go back to intial form by clicking:
in breadcrumbs.
c) SAML Certificates (click Edit button)
Leave default options for signing:
then set notification email:
Notification email: techsupport@sellercrowd.com
d) Download XML file
Click on Download button next to Federation Metadata XML
Contact the SellerCrowd support team (email: techsupport@sellercrowd.com) and request that they enable SAML 2.0 for your account. Make sure to include:
the metadata URL from the previous step
"<your-organization-id>" (a variable you set in step 3 a) )
your organization email domain (one or more)
Once the SellerCrowd team processes your request, you'll be notified via email that SAML configuration is complete. You can start assigning people to the application on the Azure side (to allow all or some of your users to actually have access to SellerCrowd).
SP-initiated SSO
Enter your email, then click Continue.