Skip to main content

SSO Integration for Microsoft

Updated

What is SAML?

SAML (Security Assertion Markup Language) is a standard for securely exchanging authentication and authorization data between different online systems. It enables Single Sign-On (SSO), allowing users to log in once and gain access to multiple applications without needing to re-enter credentials. Think of SAML as a digital passport that verifies a user’s identity and grants them seamless access to various services.

 

This article will explain how to configure Microsoft Entra ID for SAML-based authentication.

How to configure Microsoft SSO for Cartwheel

Here's how to set up single sign-on (SSO) with Cartwheel:

  1. Contact Cartwheel Support: Reach out to the Cartwheel Support team at support@trycartwheel.com. They will provide you with the following URLs needed for SSO configuration:
  • Identifier
  • Reply URL
  • Sign-on URL
  • Logout URL
  1. Configure Microsoft Entra ID: Configure your Microsoft Entra ID account for single sign-on (SSO). You will need to provide Cartwheel Support with your App Federation Metadata URL.
  2. Cartwheel Completes Setup: The Cartwheel team will finalize the setup of your SSO connection using the information you provide.


Important: This process assumes you already have a Microsoft Entra ID. If you don't, you'll need to create one before you can use SAML authentication with Cartwheel.

 

Configure Microsoft Entra ID for single sign-on (SSO)

  1. Navigate to the Microsoft Entra ID.
  2. Browse to Identity > Applications > Enterprise applications > All applications.
  3. Press on the “New application” button
  4. Click on “Create your own application”. Select a name for that application, for example “Cartwheel”. Choose “integrate any other application you don’t find in the gallery” option.
  5. After creating the application, please open the “Set up single sign on” setting and choose the “SAML” as your single sign on method.
  6. In the Set up Single Sign-in with SAML screen, click Edit next to Basic SAML Configuration.



  7. In the “Edit” screen insert the data that will be provided to you by the Cartwheel team.

For example:

  • Identifier - Microsoft-acme
  • Reply URL - https://demo.cartwheel.tech/app/saml/SSO/alias/microsoft-acme
  • Sign on URL - https://demo.cartwheel.tech/app/saml/login/alias/microsoft-acme
  • Logout URL - https://demo.cartwheel.tech/app/saml/logout/alias/microsoft-acme
  1. In the Attributes & Claims screen, set the following information:

In order to do so, press on the “Edit” button and then double-click on an item





Please set the claims to the following parameters:

  • Unique User Identifier (Name ID) - user.primaryauthoratativeemail
  • EmailAddress - user.primaryauthoratativeemail
  • FirstName - user.givenname
  • LastName - user.surname

 

  1. In the SAML Certificates screen, copy the App Federation Metadata URL and provide it to the Cartwheel team.
  2. The Cartwheel team will finish up the setup of your SSO integration and will let you know when it is good to go.

 

Related articles

Comments

0 comments

Please sign in to leave a comment.

Powered by Zendesk