Creating a SAML application in Azure AD for Mirror Gateway
search cancel

Creating a SAML application in Azure AD for Mirror Gateway

book

Article ID: 273645

calendar_today

Updated On:

Products

Mirror Gateway CASB Advanced Threat Protection CASB Audit CASB Gateway CASB Gateway Advanced CASB Security Advanced CASB Security Advanced IAAS CASB Security Premium CASB Security Premium IAAS CASB Security Standard CASB Securlet IAAS CASB Securlet SAAS CASB Securlet SAAS With DLP-CDS

Issue/Introduction

An application is needed in Azure AD for Mirror Gateway to function correctly.  Below are the steps to create the application.

Resolution

  1. Login to Azure with an Administrator account
  2. Go to Enterprise applications
  3. Click New application
  4. Click Create your own application
  5. In the Create your own application dialogue enter a name
  6. Select the “Register an application to integrate with Azure AD (App you’re developing)” and click create
  7. On the Register an application page

    1. Verify that “Accounts in this organizational directory only (domain only – Single tenant)” option is selected
    2. If you have received the URI from Mirror Gateway you can select web and copy and paste it here.
    3. If you have not received the URI leave this section blank
    4. Click Register
  8. Back on the Enterprise applications | All applications page find the newly created application and click on it
  9. On the <New Application name> | Overview page under “Getting Started” click assign users and groups. This should bring up the <New Application name> | Users and groups page
  10. On the <New Application name> | Users and groups page
    1. Click +Add user/group
    2. Check the box next to the users that you want to add
    3. Click Select
      Note: Only the users assigned in this step will be able to navigate to office through Mirror Gateway.
  1. On the left hand menu click “Single sign-on” which takes you to the <New Application name> | Single sign-on page
    1. Click “Go to application”
    2. Click on endpoints
    3. Copy the “Federation metadata document” and save as a local xml file
    4. Next to “Application ID URI” click “Add an Application ID URI”
    5. On the <New Application name> | Expose an API page click “Add”. This opens the Edit application ID URI page.
    6. On the Edit application ID URI page click “Save”
    7. Go to Enterprise applications | All applications page and find the newly created application and click on it
    8. Copy the Application ID URI
  1. Take the newly copied Application ID URI and the xml file created in step 11.3 and send them to support
Powered by Wolken Software