How to set up Azure AD as an SP when setting up SAML SSO

Question

How to set up Azure AD as an SP when setting up SAML SSO

preTest 0

I see that the way to set up Azure AD as an IDP is to use the Enterprise Application.

However, I have an external application that I am using as an IDP and I want to register Azure AD as an SP to implement SAML SSO, how do I set it up?

Additionally, is it not possible to do OIDC SSO as well?

1 answer

Your answer

Answer 1

Deepanshukatara-6769 15,195

Hello , Welcome to MS Q&A

Here are some documentation links that can help you set up Azure AD as a Service Provider for SAML SSO and explore OIDC SSO options:

Microsoft Entra single sign-on (SSO) integration with ADP (OIDC) - This guide provides steps to configure OAuth/OIDC federation setup.

Add an identity provider to your Azure Active Directory B2C tenant - This article explains how to configure Azure AD B2C to allow users to sign in with credentials from external identity providers.

Set up sign-up and sign-in with SAML identity provider using Azure Active Directory B2C - This documentation shows how to enable sign-in with a SAML identity provider user account.

These resources should provide you with the necessary guidance to set up Azure AD as a Service Provider for SAML SSO and explore OIDC SSO options.

Please let me know if any further help needed

Kindly accept if it helps

Thanks

Deepanshu

Vigneshwar Duvva 240 Reputation points Microsoft External Staff

2025-03-24T09:28:31.71+00:00

Hello preTest

I wanted to follow up to see if you’ve had a chance to review the answer provided by Deepanshu.

Additionally, below documentation will help you to how to enable SSO for SP.

Refer: https://learn.microsoft.com/en-us/entra/identity/enterprise-apps/add-application-portal-setup-sso

I hope this information helps to you and let me know if you have any further questions, we will be happy to help you.
Vigneshwar Duvva 240 Reputation points Microsoft External Staff

2025-03-25T06:47:43.6066667+00:00

Hello @preTest

Hope you are doing good!Following up to see if the answer was helpful. And, if you have any further query do let us know.

Hope this helps.

Please accept an answer if correct. Original posters help the community find answers faster by identifying the correct answer

Thank you.
preTest 0 Reputation points

2025-03-26T06:10:54.7233333+00:00

Hi, thank you for your response. @Deepanshukatara-6769 @Vigneshwar Duvva

I checked out your guide, but it's not what I'm looking for.

I want to use Azure as an SP, not an IDP, and your guide seems to refer to Azure acting as an IDP.

I would like to know how to integrate with an external authentication system via SAML in Azure AD (Microsoft AD) as an SP.
Vigneshwar Duvva 240 Reputation points Microsoft External Staff

2025-03-27T09:52:09.2233333+00:00

Hello preTest

If you want to use the application as an IDP and Azure as an SP, you need to configure federated sign-in. Below is an example of how Google is used as an IDP while Azure is used as an SP.
https://learn.microsoft.com/en-us/education/windows/configure-aad-google-trust
Vigneshwar Duvva 240 Reputation points Microsoft External Staff

2025-03-28T10:51:49.7533333+00:00

Hello @preTest

Hope you are doing good!

Have you had a chance to look at my previous comment about making Azure the service provider.
Below is doc for example
https://learn.microsoft.com/en-us/education/windows/configure-aad-google-trust#configure-microsoft-entra-id-as-a-service-provider-sp-for-google-workspace

Share via

How to set up Azure AD as an SP when setting up SAML SSO

1 answer

Your answer