# Azure Active Directory (MS Entra)

## Integration of SSO with Azure AD and TrustLogix

### Create Azure AD SSO Application

Follow these steps to create an Azure AD SSO application for TrustLogix:

#### Step 1: Create an Enterprise Application

1. Navigate to **Microsoft Entra ID** → **Enterprise Applications**.
2. Click on **New Application**.
3. Select **Create your own application**, provide a name, and create the application.

#### Step 2: Configure Single Sign-On (SSO)

1. Go to **Single Sign-On** and select **SAML**.
2. Add the **Entity ID** and **ACS URL**:
   * **Entity ID**: `https://{trustlogixhostname}/api/federation/{tlx_tenant_id}/metadata`&#x20;
   * **ACS URL**: `https://{trustlogixhostname}/api/federation/{tlx_tenant_id}/sso`
   * NOTE : Replace **trustlogixhostname** with hostname shared for front end use e.g. : dp.trustlogix.io and **tlx\_tenant\_id** with the alphanumeric value e.g. : 8a48834e95ea0b540195ea56a5ae00d3&#x20;
3. Download the **Federation Metadata XML**.
4. Navigate to **Properties** and retrieve the **User Access URL** (Redirection URL), for example: [https://launcher.myapps.microsoft.com/api/signin/\<app\_id>?tenantId=\<tenantId>](https://launcher.myapps.microsoft.com/api/signin/87957f06-9692-4a1f-8c98-a3329cf5b39a?tenantId=64ddf09f-4f98-4b98-a806-f947d4d7a672)

***

### Enable SSO in TrustLogix

Once the Azure AD SSO application is created, follow these steps to configure SSO in TrustLogix:

#### Step 1: Configure SSO in TrustLogix

1. Log in to **TrustLogix** using a **Tenant Root Admin** user with Super User role.
2. Navigate to the **Integrations** page.
3. Click on **Create SSO Integration**.
4. Fill in the required details:
   * **Integration Name**
   * **Metadata XML** (downloaded from the Azure AD application)
   * **Redirect URL** (from Azure AD application)
5. Save the integration.

#### Step 2: Test SSO Login

1. Assign a user to the Azure AD application.
2. Create a user with the same email address in TrustLogix.
3. Log in using SSO to verify successful authentication.

***

By following these steps, TrustLogix will be successfully integrated with Azure AD for SSO. To enable user provisioning from Azure AD refer User Provisioning section.