You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/active-directory/saas-apps/netsuite-tutorial.md
+19-42Lines changed: 19 additions & 42 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -12,9 +12,8 @@ ms.service: active-directory
12
12
ms.subservice: saas-app-tutorial
13
13
ms.workload: identity
14
14
ms.tgt_pltfrm: na
15
-
ms.devlang: na
16
15
ms.topic: tutorial
17
-
ms.date: 09/10/2019
16
+
ms.date: 01/10/2020
18
17
ms.author: jeedes
19
18
20
19
ms.collection: M365-identity-device-management
@@ -68,9 +67,8 @@ Configure and test Azure AD SSO with NetSuite by using a test user called **B.Si
68
67
To configure and test Azure AD SSO with NetSuite, complete the following building blocks:
69
68
70
69
1.[Configure Azure AD SSO](#configure-azure-ad-sso) to enable your users to use this feature.
71
-
72
-
a. [Create an Azure AD test user](#create-an-azure-ad-test-user) to test Azure AD single sign-on with user B.Simon.
73
-
b. [Assign the Azure AD test user](#assign-the-azure-ad-test-user) to enable user B.Simon to use Azure AD single sign-on.
70
+
*[Create an Azure AD test user](#create-an-azure-ad-test-user) to test Azure AD single sign-on with user B.Simon.
71
+
*[Assign the Azure AD test user](#assign-the-azure-ad-test-user) to enable user B.Simon to use Azure AD single sign-on.
74
72
1.[Configure NetSuite SSO](#configure-netsuite-sso) to configure the single sign-on settings on the application side.
75
73
*[Create the NetSuite test user](#create-the-netsuite-test-user) to have a counterpart of user B.Simon in NetSuite that's linked to the Azure AD representation of the user.
76
74
1.[Test SSO](#test-sso) to verify that the configuration works.
@@ -87,52 +85,32 @@ To enable Azure AD SSO in the Azure portal, do the following:
87
85
88
86
1. In the **Basic SAML Configuration** section, in the **Reply URL** text box, type a URL in one of the following formats:
> The values in the preceding URLs are not real. Update them with the actual Reply URL. To get the value, contact the [NetSuite Client support team](http://www.netsuite.com/portal/services/support-services/suitesupport.shtml). You can also refer to the formats shown in the **Basic SAML Configuration** section in the Azure portal.
101
99
102
-
The NetSuite application expects the SAML assertions to be displayed in a specific format. You'll need to add custom attribute mappings to your SAML token attributes configuration.
103
-
104
-
1. To open the **User Attributes** pane, select the **Edit** ("pencil") icon. The pane displays a list of default attributes, as shown in the following image:
105
-
106
-
100
+
1. NetSuite application expects the SAML assertions in a specific format, which requires you to add custom attribute mappings to your SAML token attributes configuration. The following screenshot shows the list of default attributes.
107
101
108
-
In addition to these attributes, the NetSuite application expects a few more attributes to be passed back in the SAML response.
102
+
109
103
110
-
1. In the **User Attributes** pane, under **User Claims**, perform the following steps to add the SAML token attribute that's shown in the following table:
104
+
1. In addition to above, NetSuite application expects few more attributes to be passed back in SAML response which are shown below. These attributes are also pre populated but you can review them as per your requirements.
111
105
112
-
| Name | Source attribute |
106
+
| Name | Source attribute |
113
107
| ---------------| --------------- |
114
108
| account | `account id` |
115
109
116
-
a. Select **Add new claim** to open the **Manage user claims** pane.
117
-
118
-
b. In the **Name** box, type the attribute name that's shown for that row.
119
-
120
-
c. Leave the **Namespace** box blank.
121
-
122
-
d. In the **Source** drop-down list, select **Attribute**.
123
-
124
-
e. In the **Source attribute** list, enter the attribute value that's shown for that row.
110
+
> [!NOTE]
111
+
> The value of the account attribute is not real. You'll update this value, as explained later in this tutorial.
125
112
126
-
f. Select **OK**.
127
-
128
-
g. Select **Save**.
129
-
130
-
>[!NOTE]
131
-
>The value of the account attribute is not real. You'll update this value, as explained later in this tutorial.
132
-
133
-
1. In the **Set up single sign-on with SAML** pane, in the **SAML Signing Certificate** section, look for **Federation Metadata XML**.
134
-
135
-
1. Select **Download** to download the certificate and save it on your computer.
113
+
1. On the Set up single sign-on with SAML page, in the SAML Signing Certificate section, find Federation Metadata XML and select Download to download the certificate and save it on your computer.
@@ -272,7 +250,7 @@ In this section, you enable user B.Simon to use Azure single sign-on by granting
272
250
273
251
In this section, a user called B.Simon is created in NetSuite. NetSuite supports just-in-time user provisioning, which is enabled by default. There's no action item for you in this section. If a user doesn't already exist in NetSuite, a new one is created after authentication.
274
252
275
-
## Test SSO
253
+
## Test SSO
276
254
277
255
In this section, you test your Azure AD single sign-on configuration by using the Access Panel.
278
256
@@ -284,4 +262,3 @@ When you select the NetSuite tile in the Access Panel, you should be automatical
284
262
-[What is application access and single sign-on with Azure Active Directory?](https://docs.microsoft.com/azure/active-directory/active-directory-appssoaccess-whatis)
285
263
-[What is conditional access in Azure Active Directory?](https://docs.microsoft.com/azure/active-directory/conditional-access/overview)
286
264
-[Try NetSuite with Azure AD](https://aad.portal.azure.com/)
0 commit comments