If you have not yet activated SSO in your Apricot database, please follow the steps for admins here: Apricot Federated Single Sign On (SSO)
Create an Azure Enterprise Application
Open Office 365 Admin Center > Azure Active Directory
Go to Enterprise Applications
Choose + New application
Choose + Create your own application
Create the name of your application and choose Integrate any other application you don’t find in the gallery (Non-gallery) > Press Create
Configure Azure Enterprise Application
Navigate to your newly create Azure Enterprise Application under Enterprise Applications > All applications > YourAppName.
Under manager > Choose Single-sign on > Choose SAML
Click Edit .
Under Identifier (Entity ID) choose Add identifier. Fill in the identifier with your Apricot tenant’s SSO Pool ID from your Apricot Managed Federated SSO page.
Please add the entity id with the following text as the prefix: urn:amazon:cognito:sp: <YourSSOPOOLID>
Under Reply URL (Assertion Consumer Service URL) choose Add reply URL. Fill in the reply URL with your SSO POOL DOMAIN NAME from your Apricot Managed Federated SSO page.
Click Save.
Scroll down the page to the SAML Signing Certificate section.
Navigate to your Managed Federated SSO page and click Add SAML
Copy the App Federated Metadata URL and paste the information into the Provide a metadata document endpoint URL > Click SAVE
Adding SSO Users to Azure
Note: Adding users to Azure does not add users to Apricot. Admins must also add users to Apricot.