Contents x
    SSO: Azure Active Directory
    • 4 Minutes to read
    • Print
    • Dark
      Light
    Contents

    SSO: Azure Active Directory

    • 4 Minutes to read
    • Print
    • Dark
      Light
    Article Summary

    Integrating SmarterU with Azure Active Directory (Azure AD) allows you to:

    • Control who has access to SmarterU from Azure AD
    • Automatically sign users into SmarterU using their Azure AD accounts (i.e. single sign-on)
    • Manage your accounts from the Azure portal
    If you want to integrate Azure Active Directory (AD) B2C using OpenID, refer to Setting Up Azure Active Directory B2C
    BEFORE YOU BEGIN

    To set up Azure AD with SmarterU:

    1. Add SmarterU as a managed app in Azure AD. 
    2. Configure single sign-on in Azure AD.
    3. Configure single sign-on in SmarterU.
    4. Create a user in Azure AD. See note about creating a test user, below this list.
    5. Assign the SmarterU app to the Azure AD user. See note about creating a test user, below this list.
    6. Add the user to SmarterU. See note about creating a test user, below this list.
    For single sign-on to work, you need to create a relationship between an Azure AD user and the related SmarterU user. We recommend completing steps 4-6 for a test user before creating additional user accounts to ensure that you've properly established the relationship between Azure AD and SmarterU. After you've tested single sign-on for your test user, you'll need to complete steps 4-6 for each user.

    Adding SmarterU as a Managed App 

    To add SmarterU as a managed app in Azure AD:

    1. From the left menu in Azure, select Azure Active Directory

    1. From the sub-menu, select Enterprise Applications.

    1. Ensure All Applications is selected.
    2. Click New Application.

    1. In the Add From the Gallery section, enter SmarterU in the search field.

    The SmarterU application displays in the search results. 

    1. Click SmarterU.
    2. Click Add.

    NEXT STEP: Configure single sign-on in Azure AD.

    Configuring Single Sign-On in Azure AD

    To configure single sign-on in Azure AD:

    1. From the SmarterU - Overview page's menu, select Single Sign-On

    1. Select SAML.
    2. From the Basic SAML Configuration section, click Icon Description automatically generated. The Basic SAML Configuration workscreen displays.
    3. From the Basic SAML Configuration workscreen:
      1. In the Identifier field, be sure the identifier is https://integrations.smarteru.com/<accountID>, where you replace <accountID> with your account's ID.  
    You can find your account's ID by logging into SmarterU and looking at the URL.

    1. Click Save.
    2. Click  to close the Basic SAML Configuration workscreen.

    1. On the SmarterU - SAML-Based Sign On page, scroll down to the SAML Signing Certificate section.
    2. From the SAML Signing Certificate section, click the Download link beside Federation Metadata XML. 

    1. Save the file to your computer. You'll need this file in the Configuring Single Sign-On in SmarterU step.

    NEXT STEP: Configure single sign-on in SmarterU.

    Configuring Single Sign-On in SmarterU

    To configure single sign-on in SmarterU:

    1. Enable external authorization for your SmarterU account.
    2. Specify the following settings:
    SettingValue

    Master Login Control

    Select the SmarterU option.

    User Default Login

    Select the SmarterU option.

    Enable SAML

    Check the Enable SAML checkbox.

    IdP Metadata

    Use Notepad to open the Federation Metadata XML certificate that you downloaded in the Configuring Single Sign-On in Azure AD section. Copy the contents of the certificate file and paste it into the IdP Metadata field. 

    Identifier Attribute/Claim

    Select the identifier you want to use for log in.

    Identifier Type

    Select the identifier type.

    Graphical user interface, text, application, email, website Description automatically generated

    1. Click Save.

    NEXT STEP: Create a user in Azure AD.

    Creating a User in Azure AD

    To create a user in Azure AD:

    1. From the left menu in Azure, select Azure Active Directory.
    2. Select Users.

    1. Ensure All Users is selected. 
    2. Click New User.

    The User workscreen displays.

    1. Select Create User
    2. Specify the following settings in the User workscreen.
    SettingValue

    User Name

    The user's email address.

    NOTE: If you're using the user's email address to link Azure to SmarterU, make note of the user's email address. You will need to use this email address when you create the user in SmarterU. 

    Name

    The user's full name.

    First Name

    The user's first name.

    Last Name

    The user's surname.

    1. In the Password section, do one of the following.
    • To auto-generate a password, select the Auto-Generate Password option and check the Show Password checkbox. Make note of the password as you'll need it when you create the user's SmarterU user account
    • To specify the user's password, select the Let Me Create a Password option and enter the user's password. 

    Graphical user interface, application Description automatically generated

    1. Click Create.

    NEXT STEP: Assign the SmarterU app to the user.

    Assigning the SmarterU App to the User

    In order for the SmarterU app to display in the user's Azure Access Panel, you'll need to assign the app to the user. 

    To assign the SmarterU app to the Azure AD user:

    1. From the left menu in Azure, select Azure Active Directory.
    2. Select Enterprise Applications.

    1. Select All Applications.
    2. From the list of applications, select SmarterU.
    3. Select Users and Groups.
    4. Click Add User. The Add Assignment workscreen displays.
    5. Click Users.

    The Users panel displays.

    1. Click the name of the user. The user's name displays in the Selected Items section of the panel.

    1. Click Select. The Add Assignment workscreen reflects the number of users that were selected.
    2. Click Assign.

    NEXT STEP: Adding the user to SmarterU.

    Adding the User to SmarterU

    To add the user to SmarterU:

    1. Follow the steps detailed on the Adding a User Manually page.
    2. Be sure that the email address specified matches the user's Azure AD email address.
    3. Determine the URL users will use to log in.
    4. Log in with single sign-on using the test user

    Determining the URL Users Will Use to Log In

    To determine the URL that users will use to log in:

    1. From the left menu in Azure, select Azure Active Directory.
    2. Select Enterprise Applications.
    3. From the list of applications, select SmarterU.
    4. Select Properties.
    5. Locate the User Access URL. This is the URL that users will use to log in.

    Troubleshooting

    If your users are having trouble logging in, refer to our Troubleshooting User Accounts page for common issues.

    Was this article helpful?
    Related articles
    What's Next
    SmarterU LMS is proudly located in the heart of North America, helping our clients around the globe unleash their human potential and increase their organizational intelligence.
    SmarterU LMS
    Company
    Top Features
    Contact Us
    Follow Us
    SmarterU LMS Copyright © 2006-  Neovation Corporation. All rights reserved.
    SmarterU and Success Desk are trademarks of Neovation Corporation.