This article explains how to set up and use the SAML 2.0 Integration, so your organization can rely on Single Sign-On, using Azure as the Identity Provider, and require employees to authenticate using your Azure Users directory.
How to connect the SAML 2.0 Connector integration
To set up SSO using the SAML protocol, you need to connect to the "SAML 2.0" integration. Only organization admins are able to connect integrations on behalf of the organization.
✅ Step 1 - Select the Hub icon and click on the App tab once logged in
✅ Step 2 - Look for SAML 2.0 and click on it.
✅ Step 3 - Now click on "Connect SAML 2.0" and enter the integration set up. Keep this screen open to get the values from Azure.
How to set up a new Azure Enterprise Application
To set up a new Enterprise Application in the Microsoft Entra ID service, follow these steps:
✅ Step 1 - Go to the Microsoft Entra ID service.
✅ Step 2 - Click on Add > Enterprise Application, then click on "Create your own application", on the top left.
✅ Step 3 - Give a name to the new application, for example, "Deel", and choose the "Integrate any other application not found in the gallery (Non-gallery)". Once the application is created, assign users and groups to this application, then set up single sign on.
✅ Step 4 - To set up SSO, click on "Single sign-on" link, on the left panel, and choose the SAML option.
✅ Step 5 - Scroll down to the step 3, and copy the "App Federation Metadata Url". Paste this url in the "Metadata URL" field, in Deel's SAML 2.0 configuration screen.
✅ Step 6 - Still in Deel's SAML setup, add an Entity ID to identify this integration in the Identity Provider, and click "Connect & Go To Settings". Important: There's the need to enter this exact Entity ID in Azure set up.
✅ Step 7 - Once the SAML Integration is connected, give it a name, and copy the "Redirect URL". This URL will be used as the "Reply URL" field, in Azure's set up.
✅ Step 8 - Back to Azure's setup, scroll up to step 1, and click on "Edit".
✅ Step 9 - For "Identifier (Entity ID)", click on "Add identifier" and enter the same Entity ID provided in Deel's setup.
✅ Step 10 - For "Reply URL (Assertion Consumer Service URL)", click on "Add reply URL" and paste the "Redirect URL" from Deel's set up. Click on "Save", at the top, and close once it's saved.
✅ Step 11 - Now, click on "Properties" on the left. Make sure the app is enabled for users to sign-in, the app is visible to users, and whether or not the application requires assignment to show up to users. Click on "Save" at the top, to save changes.
✅ Step 12 - Back to Deel's SAML 2.0 Connect SSO settings, click on "Enable" to enable SSO for an organization.
FAQ
[ACCORDION] Does this integration support LastPass?
No, this integration currently doesn't support LastPass.