Set up Microsoft Azure as a third-party SAML identity provider

Before you begin

Make sure you have an Azure premium account

Complete this procedure to set up Microsoft Azure as a third-party SAML identity provider.

How to

  1. In the Microsoft Azure portal, complete these steps:
    1. Add an Akamai Enterprise Application Access gallery application to Azure AD
    2. Set up single sign-on for Enterprise Application Access application
    3. Create a test user in Azure AD
    4. Assign the test user to the application
    5. Sync users from Active Directory to Azure AD
  2. In ETP, complete these steps:
    1. Add Microsoft Azure AD as a third-party SAML identity provider
    2. Download and deploy an identity connector. For more information, see Create and download an identity connector.
    3. Add your AD to ETP. As part of this procedure, make sure you assign the identity connector that you created to the directory. For more information, see Add a directory.
    4. Assign AD to the Azure identity provider. See Assign AD to the Azure identity provider
  3. If this is the first Azure IdP that you are creating in ETP, add domains that are specific to Azure to an exception list. For more information, see Add identity provider domains to an exception list.
  4. Test single sign-on (SSO). After you assign the identity provider to a policy for authentication, you can try to access a website that requires authentication with the test user account that you created and assigned to Azure AD.