In this article, we'll be referencing this URL at a couple of places. You can figure out what to use there by going to Manage Organization > Configuration
If you've custom domain setup on AirMason
- then your Organization URL will be your custom domain (Eg: handbooks.johnsmithweb.com)
- otherwise it will be books.airmason.com/<company-handle>, where <company-handle> is company handle that you've set up. (Eg: books.airmason.com/johnsmith)
Setting up AirMason app on Azure:
Please create a Non gallery application (in Enterprise applications) (You can follow this guide for creating a non gallery application)
Setup following under Single Sign On > Saml
2.1. Under the Basic SAML configurations, set Entity ID and Assertion Consumer Service URL to https://<Organization URL>/ms_adfs/saml2 (replace <Organization URL> with your Organization URL)
2.2. Set the following claims (case-sensitive) in User Attributes & Claims. Make sure these claims are added and mapped to correct values. (Note: While adding a claim, please leave Namespace field blank)
Giving access - Adding users/groups:
Click on Users and groups.
Select the users/groups you'd like to give access to the AirMason app (any employees who will be using AirMason to view documents/handbooks).
Connecting Azure SSO app to AirMason:
Under your newly created Azure app,
1.1. Go to Single Sign On tab and copy Azure AD Identifier
1.2. Go to Properties tab and copy User access URL field
1.3. Go to Single Sign On > SAML Signing Certificate and download Certificate (base64) and copy its content
Now, login to airmason.com and go to Integrations page
Select Azure app from SSO applications and click on Connect and set the following params:
3.1. Issuer URL as Azure AD Identifier value from Step 1.1.
3.2. SAML 2.0 Endpoint as User access URL value from Step 1.2.
3.3. Certificate as X.509 Certificate value from Step 1.3.
Testing Azure SSO as employee:
Go to your Organization URL. It should show you login page for viewing your handbooks
Click on "Login with Microsoft"
It should take you to login using Microsoft Azure SSO credentials (if you are not logged in)
Once you log in, it should bring you back to AirMason and you should be able to view handbooks you've access to (similar to what is shown below).