In this guide, we’ll walk through the steps needed to connect your Azure AD account with Archie for single sign-on (SSO) integration. This integration will allow your employees to log in Archie using their current account. Before beginning, ensure you have admin access to both your Azure and Archie accounts.
Step 1: Install Archie from Azure Marketplace
Log into your Azure account and go to Enterprise Application.
Click on New application and Search for "Archie"
Open the Archie app and click Create. It will set up your application in the Enterprise application.
Step 2: Configure SAML Settings in Azure
Navigate to "Single Sign-On" settings in Azure.
Scroll to the Basic SAML Configuration section, then add/confirm the following values:
Entity ID:
https://archieapp.coACS URL (Reply URL):
https://archieapp.co/saml/acs
Leave other fields blank for now.
Step 3: Download the SAML Certificate
While still in the Single Sign-On settings, scroll down to the SAML Certificates section.
Download the certificate in Base64 format.
Save the file securely—you’ll need it later to upload it to Archie.
Note: Make sure to download the Base64 certificate, as you’ll need it later. The certificate is a string of characters that you’ll paste into Archie. Do not copy the URL or download link, as these won’t work in the settings and will cause issues if used.
Step 4: Copy your parameters
While still in the Single Sign-On settings, scroll down to the Set up *Name of your app* section (Section number 4)
Copy the Login URL and Microsoft Entra Identifier values to a location you can access later, as we will be using these to set up Archie.
Step 5: Assign users and groups to grant them access to log in to Archie.
Navigate to "Users and groups" settings in Azure.
Select Add user/group.
On the Add Assignment pane, select None Selected under Users and groups.
Search for and select the user or group that you want to assign to the application.
Select Select.
Under Select a role, select the role that you want to assign to the user or group. If you haven't defined any roles yet, the default role is Default Access.
On the Add Assignment pane, select Assign to assign the user or group to the application.
Step 6: Complete Configuration in Archie
In Archie, go to "Settings > Integrations > App Marketplace" , locate the SSO SAML integration, and click View integration.
Click Connect identity provider
Fill the information needed
Provider: Select Microsoft
Provider name: Set the name that you would like to use to identify this integration
Note: It's best to leave the Provider Name blank unless you have multiple SSO clients, like two Microsoft accounts for different user groups, where naming helps distinguish them.
SSO URL: Enter your Login URL obtained in Step 4 (e.g.,
https://login.microsoftonline.com/xxxxxxx)Entity ID: Enter the Microsoft Entra Identifier obtained in Step 4 (e.g.,
https://sts.windows.net/xxxxxxx)Copy/paste certificate: Add the SAML certificate downloaded in Step 3.
Note:
Copy paste the certificate itself and not the URL or download link
When pasting the certificate, ensure no spaces or line breaks were added, as copying from Notepad can introduce breaks that cause issues—double-check before pasting
Once ready, click Confirm.
Step 7. Copy parameters from Archie to Azure
In Archie, go to "Settings > Integrations > App Marketplace" , locate the SSO SAML integration, and click View integration.
Click on the Configuration tab
Copy the Relay State Value displayed to a location you can access later
Go to "Settings > Integrations > Website", locate your Sign in link, and copy it to a location you can access later
Go back to your "Single Sign-On" settings in Azure.
Under the Basic SAML Configuration, paste the links copied in the steps above to relay state and Sign on URL
You’re All Set!
Your Azure AD account is now integrated with Archie. Users can now log in to Archie with their Microsoft accounts