Skip to main content
All CollectionsProductsLegalOn web appSingle Sign-on (SSO)
How to Set Up SSO with Microsoft EntraID (formerly known as Azure Active Directory)
How to Set Up SSO with Microsoft EntraID (formerly known as Azure Active Directory)
Updated over 2 weeks ago

Purpose

Microsoft Entra ID, previously known as Azure Active Directory, provides a robust identity and access management solution that enables organizations to manage user identities and secure access to applications. This article outlines the steps to configure Single Sign-On (SSO) using SAML (Security Assertion Markup Language) with Microsoft Entra ID, ensuring a seamless experience for users across various applications.

Prerequisites

Before you begin the SSO configuration process, ensure you have the following:

  • A valid Microsoft EntraID subscription is required.

  • The administrator (LegalOn user) has the authority of "Administrator (Owner)" or "Administrator" in the LegalOn web application

  • The Microsoft Entra ID and LegalOn user email addresses match

Depending on your LegalOn contract, you may or may not be able to use this service. If you would like to use this service, please contact a sales representative.

Setup Procedure

  1. Access the Microsoft Entra Admin Center:

    • Sign in to the Microsoft Entra Admin center with an account that has at least Cloud Application Administrator permissions.

  2. Navigate to Enterprise Applications:

    • Go to Identity > Applications > Enterprise applications > + New applications

  3. Click on "Create your own application" button, enter the app name, and click the "Create" button



  4. Click on "1. Assign users and groups"


  5. Click "+ Add user/ group", then "None selected" to select users for whom you'd like to enable SSO



  6. Select SAML as the SSO Method:

    • On the Select a single sign-on method page, choose SAML.


  7. Configure Basic SAML Settings in Microsoft Entra:

    • Click on the pencil icon to edit the Basic SAML Configuration.

    • Fill in the required fields:

      • Identifier (Entity ID)

      • Reply URL (Assertion Consumer Service URL)

Microsoft Entra ID settings

Input Value

a: Identifier (entity ID)

Copy and paste the "Identifier / Entity ID" displayed on the LegalOn SSO settings screen

b: Reply URL (Assertion Consumer Service URL)

Copy and paste the "Endpoint URL" displayed on the LegalOn SSO settings screen

8. Configure SSO settings in LegalOn

Click on "3. SAML Signing Certificate", download "PEM certificate" and paste text into LegalOn's SSO settings page.

Then, copy the "Login URL" from "4. Set up LegalOn" and paste into LegalOn SSO settings page under "Identity Provider Endpoint URL (HTTP Redirect)"

This completes the SSO setup with Microsoft Entra ID.

Final notes

  1. Save Your Configuration: After entering all necessary information, make sure to save your changes.

  2. Test Your Configuration: Once configured, it is crucial to test the SSO integration by attempting to log in through Microsoft Entra ID to ensure everything functions as intended.

Did this answer your question?