Azure Active Directory (MS Entra)

Integration of SSO with Azure AD and TrustLogix

Create Azure AD SSO Application

Follow these steps to create an Azure AD SSO application for TrustLogix:

Step 1: Create an Enterprise Application

1. Navigate to Microsoft Entra ID → Enterprise Applications.

2. Click on New Application.

3. Select Create your own application, provide a name, and create the application.

Step 2: Configure Single Sign-On (SSO)

1. Go to Single Sign-On and select SAML.

2. Add the Entity ID and ACS URL:

   • Entity ID: https://{trustlogixhostname}/api/federation/{tlx_tenant_id}/metadata

   • ACS URL: https://{trustlogixhostname}/api/federation/{tlx_tenant_id}/sso

   • NOTE : Replace trustlogixhostname with hostname shared for front end use e.g. : dp.trustlogix.io and tlx_tenant_id with the alphanumeric value e.g. : 8a48834e95ea0b540195ea56a5ae00d3

3. Download the Federation Metadata XML.

4. Navigate to Properties and retrieve the User Access URL (Redirection URL), for example: https://launcher.myapps.microsoft.com/api/signin/<app_id>?tenantId=<tenantId>

Enable SSO in TrustLogix

Once the Azure AD SSO application is created, follow these steps to configure SSO in TrustLogix:

Step 1: Configure SSO in TrustLogix

1. Log in to TrustLogix using a Tenant Root Admin user with Super User role.

2. Navigate to the Integrations page.

3. Click on Create SSO Integration.

4. Fill in the required details:

   • Integration Name

   • Metadata XML (downloaded from the Azure AD application)

   • Redirect URL (from Azure AD application)

5. Save the integration.

Step 2: Test SSO Login

1. Assign a user to the Azure AD application.

2. Create a user with the same email address in TrustLogix.

3. Log in using SSO to verify successful authentication.

By following these steps, TrustLogix will be successfully integrated with Azure AD for SSO. To enable user provisioning from Azure AD refer User Provisioning section.