To integrate Microsoft Azure with AirMason, you need to be added as a collaborator on the account. If you don’t have access, contact the account owner or admin to grant you the required permissions for IT integration. For instructions on adding a new collaborator, refer to this guide.
Employee Portal URL:
In this article, we'll be referencing this Employee Portal URL. You can get this information when you log into AirMason Admin and click Manage Organization -> Employee Portal. If you do not have access to AirMason Admin, please contact your team to add you as a collaborator.
If you've custom domain setup on AirMason
- then your Employee Portal URL will be your custom domain (Eg: handbooks.johnsmithweb.com)
- otherwise it will be books.airmason.com/<company-handle>, where <company-handle> is company handle that you've set up. (Eg: books.airmason.com/johnsmith)
Setting up AirMason app on Azure
2. Click on Azure Active Directory
3. Click on +Add
4. Select Enterprise application
5. Click on +Create your own application
6. Name the applicate AirMason App
Select "Integrate any other application you don't find in the gallery (Non-gallery)"
7. Click on Create
8. Click Set up single sign on
9. Click SAML
10. Click on Edit in Basic SAML configuration
11. Click on Add identifier
12. Type in the https://{{AirMasonEmployeePortalURL}}/ms_adfs/saml2
Type in the https://{{AirMasonEmployeePortalURL}}/ms_adfs/saml2
You can find this in AirMason configurations. If you have an active custom domain, please use that instead.
13. Click on Add reply URL
14. Type in the https://{{AirMasonEmployeePortalURL}}/ms_adfs/saml2
Type in the https://{{AirMasonEmployeePortalURL}}/ms_adfs/saml2
You can find this in AirMason configurations. If you have an active custom domain, please use that instead.
15. Click on Save
16. Click on Edit user attributes & claims
17. Click on the first additional claim
18. Delete the content in the Namespace
19. Update emailAddress to email
20. Click Save
21. Click on the second claim
22. Update name to be firstName
23. Delete the content in the Namespace
24. Click on Save
25. Click on three dots next to the userprincipalname
26. Click on Delete
28. Update name to be lastName
29. Delete the content in the Namespace
30. Click on Save
31. Click on Close
32. Copy Azure AD identifier under Set up AirMason App
If you do not have access to AirMason Admin, please contact your admin team to add you as a collaborator
34. Click on Connect next to the Azure integration
35. Paste the Azure Identifier into Issue URL
36. Click on Properties
37. Copy the User Access URL
38. Go Back to AirMason Admin integrations and paste the text under SAML 2.0 Endpoint
39. Click Single sign-on on the left side
40. Download the Federation Metadata XML
When you open the document, copy the X509 Certificate
41. Paste the x509 certificate under Certificate
42. Click on Save
43. Assign users and groups access to the Appp
Click Users and groups on left side toolbar
44. Click on Add user/group
45. Click on None Selected
46. Add the users and groups
47. Click on Select
48. Click on This information box links to an additional action. Activate it to execute the action.…
49. Testing the integration
Click Single sign-on
50. Click on Test
51. Success!
If the page redirects to AirMason employee portal where you will see any handbooks assigned to you. There may be no documents assigned if your admin is not ready to launch yet.