--- title: "Microsoft SAML" slug: "microsoft-saml" updated: 2025-10-23T10:06:16Z published: 2025-10-23T10:06:16Z --- > ## Documentation Index > Fetch the complete documentation index at: https://help.unleash.so/llms.txt > Use this file to discover all available pages before exploring further. # Microsoft SAML Before getting started in Azure, complete the following steps in Unleash to ensure you have access to the information you need: - Navigate to the **Control Center** in Unleash and click on the **Sign-In**page. - Under SSO, click **Configure**. - Select **SAML** as the authentication method. - Choose **Azure** as your identity provider. > [!NOTE] > After SAML is configured, users will no longer be able to sign in using your existing SSO Identity Provider (such as “Sign in with Microsoft”). All authentication will be routed exclusively through Microsoft SAML, and alternate SSO methods will be disabled. Once you've completed these steps, open your Azure account and follow the instructions below. ## Step 1: Creating an App - Go to your [Azure Portal](https://portal.azure.com/#view/Microsoft_AAD_IAM/StartboardApplicationsMenuBlade/~/AppAppsPreview/menuId~/null). - Click **Enterprise applications** and then click **+New application.** ![](https://cdn.document360.io/9c439416-8f37-43ae-8ba7-d5c31de26a65/Images/Documentation/image-1720515157057.png) ![](https://cdn.document360.io/9c439416-8f37-43ae-8ba7-d5c31de26a65/Images/Documentation/image-1720515174884.png) ## Step 2: General Settings - Click **Create your own application**. - Name your App **Unleash.** - Select the radio button: **Integrate any other application you don’t find in the gallery (Non-gallery)**. - Click **Create**. ![](https://cdn.document360.io/9c439416-8f37-43ae-8ba7-d5c31de26a65/Images/Documentation/image-1719476424754.png) ## Step 3: SAML Settings - On the left-side menu, click**Single sign-on**, then click **SAML**. - In the **Basic SAML Configuration**box, click **Edit.** - Under **Identifier (Entity ID)**, enter, unleash-tech. - Under **Reply URL (Assertion Consumer Service URL),** paste the **Single Sign-On URL** from the Azure SAML configuration page in Unleash. - Click **Save.** ![](https://cdn.document360.io/9c439416-8f37-43ae-8ba7-d5c31de26a65/Images/Documentation/image-1722156557299.png) ![](https://cdn.document360.io/9c439416-8f37-43ae-8ba7-d5c31de26a65/Images/Documentation/image-1722157329907.png) - In the **Attributes & Claims**box, click **Edit.** - Click**+Add new claim**. - When adding and editing claims, please make sure they follow the table when inputting values so that they match the image below. You may need to delete additional claims already present and reenter them as displayed in the image. | email | user.mail | | --- | --- | | firstName | user.givenName | | lastName | user.surname | | name | user.userprincipalname | ![](https://cdn.document360.io/9c439416-8f37-43ae-8ba7-d5c31de26a65/Images/Documentation/image-1741857434409.png) - Click on the three-dot menu in the **Required claim** section. - Click on **Choose name identifier format** and change the inputs to match the screenshot below. ![](https://cdn.document360.io/9c439416-8f37-43ae-8ba7-d5c31de26a65/Images/Documentation/image-1722158950409.png) - Copy the **App Federation Metadata URL** and paste it into the corresponding field in the **Azure SAML configuration** page in Unleash. ![](https://cdn.document360.io/9c439416-8f37-43ae-8ba7-d5c31de26a65/Images/Documentation/image-1722159029812.png) ## Step 4: Finish Your app should have been successfully created. All that’s left is assigning individual users or user groups access to the newly created SAML app.