You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/active-directory/saas-apps/sketch-tutorial.md
+29-13Lines changed: 29 additions & 13 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -9,7 +9,7 @@ ms.service: active-directory
9
9
ms.subservice: saas-app-tutorial
10
10
ms.workload: identity
11
11
ms.topic: tutorial
12
-
ms.date: 08/22/2022
12
+
ms.date: 09/13/2022
13
13
ms.author: jeedes
14
14
15
15
---
@@ -62,6 +62,24 @@ To configure and test Azure AD SSO with Sketch, perform the following steps:
62
62
1.**[Create Sketch test user](#create-sketch-test-user)** - to have a counterpart of B.Simon in Sketch that is linked to the Azure AD representation of user.
63
63
1.**[Test SSO](#test-sso)** - to verify whether the configuration works.
64
64
65
+
## Choose a shortname for your Workspace in Sketch
66
+
67
+
Follow these steps to choose a shortname and gather information to continue the setup process in Azure AD.
68
+
69
+
> Before starting this process, make sure SSO is available in your Workspace, check there is an SSO tab in your Workspace Admin panel.
70
+
> If you don't see the SSO tab, please reach out to customer support.
71
+
1.[Sign in to your Workspace](https://www.sketch.com/signin/) as an Admin.
72
+
1. Head to the **People & Settings** section in the sidebar.
73
+
1. Click on the **Single Sign-On** tab.
74
+
1. Click **Choose** a short name.
75
+
1. Enter a unique name, it should have less than 16 characters and can only include letters, numbers or hyphens. You can edit this name later on.
76
+
1. Click **Submit**.
77
+
1. Click on the first tab **Set Up Identity Provider**. In this tab, you’ll find the unique Workspace values you’ll need to set up the integration with Azure AD.
78
+
1.**EntityID:** In Azure AD, this is the `Identifier` field.
79
+
1.**ACS URL:** In Azure AD, this is the `Reply URL` field.
80
+
81
+
Make sure to keep these values at hand! You’ll need them in the next step. Click Copy next to each value to copy it to your clipboard.
82
+
65
83
## Configure Azure AD SSO
66
84
67
85
Follow these steps to enable Azure AD SSO in the Azure portal.
@@ -74,13 +92,13 @@ Follow these steps to enable Azure AD SSO in the Azure portal.
74
92
75
93
1. On the **Basic SAML Configuration** section, perform the following steps:
76
94
77
-
a. In the **Identifier** textbox, type a value using the following pattern:
95
+
a. In the **Identifier** textbox, use the `EntityID` field from the previous step. It looks like:
78
96
`sketch-<uuid_v4>`
79
97
80
-
b. In the **Reply URL** textbox, type a URL using the following pattern:
98
+
b. In the **Reply URL** textbox, use the `ACS URL` field from the previous step. It looks like:
81
99
`https://sso.sketch.com/saml/acs?id=<uuid_v4>`
82
100
83
-
1. Click **Set additional URLs** and perform the following step if you wish to configure the application in **SP** initiated mode:
101
+
1. Click **Set additional URLs** and perform the following step:
84
102
85
103
In the **Sign-on URL** text box, type the URL:
86
104
`https://www.sketch.com`
@@ -102,11 +120,7 @@ Follow these steps to enable Azure AD SSO in the Azure portal.
102
120
103
121
1. On the **Set-up single sign-on with SAML** page, in the **SAML Signing Certificate** section, find **Federation Metadata XML** and select **Download** to download the certificate and save it on your computer.
104
122
105
-
![Screenshot shows the Certificate download link.](common/metadataxml.png"Certificate")
106
-
107
-
1. On the **Set up Sketch** section, copy the appropriate URL(s) based on your requirement.
108
-
109
-
123
+
![Screenshot shows the Certificate download link.](common/metadataxml.png"Certificate")
110
124
111
125
### Create an Azure AD test user
112
126
@@ -134,11 +148,13 @@ In this section, you'll enable B.Simon to use Azure single sign-on by granting a
134
148
135
149
## Configure Sketch SSO
136
150
137
-
To configure single sign-on on **Sketch** side, you need to send the downloaded **Federation Metadata XML** and appropriate copied URLs from Azure portal to [Sketch support team](mailto:[email protected]). They set this setting to have the SAML SSO connection set properly on both sides.
138
-
139
-
### Create Sketch test user
151
+
Follow these steps to finish the configuration in Sketch.
140
152
141
-
In this section, a user called B.Simon is created in Sketch. Sketch supports just-in-time user provisioning, which is enabled by default. There is no action item for you in this section. If a user doesn't already exist in Sketch, a new one is created after authentication.
153
+
1. In your Workspace, head to the **Set up Sketch** tab in the **Single Sign-On** window.
154
+
1. Upload the XML file you downloaded previously in the **Import XML Metadata file** section.
155
+
1. Log out.
156
+
1. Click **Sign in with SSO**.
157
+
1. Use the shortname you configured previously to proceed.
0 commit comments