Single Sign-on (SSO) is a service that allows your employees to access multiple applications within your organization using a single username and password.
This eliminates the need for users to remember multiple login credentials for multiple applications.
What is Azure AD?
Azure Active Directory (Azure AD) is Microsoft’s enterprise cloud-based identity and access management (IAM) solution. It provides authentication to its cloud-based infrastructure and gives access to services such as Office 365.
What is Zenoti – Azure AD – SAML integration?
This integration allows you to link Zenoti with your enterprise software (Azure AD) via SAML SSO.
Your employees can seamlessly access information from Zenoti and Azure AD without any authentication issues using a single username and password.
This is a two-step integration:
Configure Azure AD SSO Integration
Configure Azure-SAML Integration in Zenoti.
Step 1: Configure Azure AD SSO Integration
Disclaimer: The following steps are to be performed on the Azure portal. Zenoti is not responsible for any changes to these steps or processes. This information is provided for your convenience.
Log in to your Azure portal.
From the left panel, select Enterprise Applications.
3. Click Create your own applications.
Azure will prompt you to enter the name of the application. You can enter
the name of the application as "Zenoti".
4. Enter the application name and from the list of options select Integrate any
other application you don’t find in the gallery. (Non-gallery).
5. Click Create.
The application page will open.
6. From the Getting Started section, select option 2 – Set up single sign-on.
The single sign-on page opens.
7. From the select a single sign-on method section, select SAML.
The SAML based sign-on page opens.
8. For Basic SAML Configuration, click Edit.
9. Enter the following details:
Identifier (Entity ID): Enter the Zenoti URL of your business. For example: if the Zenoti URL of your business is https://salon.zenoti.com, then enter the same.
Note: Select the Default check box.
Reply URL: Enter the reply URL. This is the destination of the SAML response. Add “/authenticate/signin” at the end of your Zenoti URL.
For example: If your Zenoti URL is https://salon.zenoti.com, the reply URL must be https://salon.zenoti.com/authenticate/signin.
Sign-on URL: Enter the same value as you enter in Reply URL.
10. Click Save.
The application page reopens.
11. From SAML Signing Certificate section, open the URL in App
Federation Metadata URL.
12. Scroll down and locate X509 Certificate.
13. Copy the entire value under X509 Certificate.
14. From the Set up <applicationname> test section, copy the value in Login URL.
Keep these values handy as you must paste them in the Zenoti – step 2.
Step 2: Configure Azure-SAML Integration in Zenoti.
At the organization-level navigate to Admin > Organization > Organizations.
The Manage Organizations page opens.
Select Integrations > SAML.
The SAML integration page appears.
Enter the following information:
Enable SAML check box: Select the Enable SAML check box.
Identity Provider Single Sign On: Paste the Login URL value from Azure in this field.
X509 Certificate: Paste the entire X509 certificate in this field.
Note: This was Step 13 under Configure Azure AD SSO Integration.
User Identifier: Enter the text “username” in this field.
Identity Provider Issuer: From Login URL, paste the alphanumerical GUID (Globally Unique Idenitifier) values after .com/. For example, if your Login URL is “https://login.microsoftonline.com/xxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/saml2”, copy the values that appear after .com/ and before/saml2. Paste the same in the Identity Provider Issuer field.
4. Click Save.
You have successfully configured Azure-SAML SSO in Zenoti.