SETTING UP SINGLE SIGN-ON WITH MICROSOFT AZURE

If you use Office 365 within your organisation, setting up single sign-on will allow all of your users to access Clearooms without needing to invite them and for them to remember additional passwords.

This short guide will walk you through how to configure Office 365 and Clearooms for Single sign-on

Step 1 - Get your Clearooms SSO Settings

To set up single sign-on, you will need to let Office 365 know your unique Clearooms Entity ID, ACS URL, and Start URL.

To get this, in Clearooms head to Settings > Single Sign-On and toggle the Enable SAML Based Single Sign-On switch. This won't turn it on immediately for users at this stage but it will show you the required information you will need.

2. Create the app

To set up single sign-on for an application:

  1. In the Azure AD portal, select Enterprise applications. Then select "+ New application followed by "Create your own application"
  1. Give the application a name such as "Clearooms SSO"
  2. Ensure "Integrate any other applications you don't find in gallery (Non-gallery) is selected.

3. Assign Users

  1. Open Users and groups
  2. Assign groups or individual users

4. Enable Single Sign On

  1. Open "Single Sign On"
  2. Select SAML
  3. Copy Meta Data URL in Clearooms and paste into the "Entity ID" Field
  4. Copy the Reply URL in Clearooms and paste into the "Reply URL"
  5. Copy the Login URL in Clearooms and paste into the "Sign on URL"
  6. Save (The page this returns to may need refreshing to see the changes)
  1. Open Step 3
  2. Download "Certification base 64"
  3. Open the downloaded file in a text editor or similar and copy the text (certificate)
  4. Paste into the "Public Certificate" slot in Clearooms
  5. Open Step 4
  6. Copy the Login URL and paste into the Clearooms SAML 2 End Point
  7. Copy the Azure AD Identifier and paste into the Clearooms "Identify provider issuer" field

5 Add the Clearooms logo (Optional)

  1. Download the Clearooms logo:
  1. Open Properties
  2. Upload the logo and save

6 Send your users the login link

  • Copy the Login URL
  • Email this to a user(s) that have been given access in step 3
  • This link will direct them to your login page and when authenticated will create the users in Clearooms