Skip to main content
All CollectionsHelp Center
How to configure (Azure / Microsoft Entra) SSO on EasyRetro
How to configure (Azure / Microsoft Entra) SSO on EasyRetro
Tchales avatar
Written by Tchales
Updated this week

For now, you can only make SSO Integration if you have the Enterprise 15 or Enterprise Ultd Plan. If you don't have one of these plans, click here to subscribe/upgrade.

After setting up your SSO, you'll need to wait for our Tech Team to finish the SSO set up on our side. This procedure usually takes one or two weeks maximum to be completed.

Here are the steps you need to follow to create an Azure App for SAML login on EasyRetro:

Step 1. Go to the Active Directory Admin Center, choose the Enterprise applications > All applications tab, and then click on the “New application” button:

On the Gallery tab, click on the “Create your own application” button:

A new section will show up, where you’ll be able to configure the app. First, choose a name for your application. It can be “EasyRetro.” Click on the “Create” button.

Step 2. You'll be redirected to the app’s page. Choose the “Single sign-on” tab and then select the “SAML” option:

Step 3. You’ll be redirected again. Click to edit the “Basic SAML Configuration” form.

Set the Entity ID to the Provider ID you got on EasyRetro’s SSO-Form page. The Assertion Consumer Service URL must be set to: https://easyretro.io/__/auth/handler.

Note: (Optional Step)

To ensure that the SSO works through Microsoft’s myapps.microsoft.com, you will need to configure the Sign-On URL field with the SSO login link we provided.

Your SSO login link should look like this:
https://easyretro.io/sso-login?companyId=saml.customer-sso

This SSO login link was shared with your team when your company completed our SSO Form, which is the first step in our SSO integration process. The SSO login link is generated and displayed immediately after clicking the Submit button on the SSO form page.

Step 4. Now you need to fill the remaining fields of our SSO form with the three following fields, found under the “SAML Signing Certificate” and the “Set up APP_NAME” forms: Login URL, Azure AD Identifier, and Certificate (Base64).

To get the certificate data, download the Base64 option and copy its content.

Step 5. The last step is to add users under the “Users and groups” tab.

After setting up SSO in your account, what to do next? Click here to check this article we made about it.

Did this answer your question?