MicrosoftDocs
diff --git a/‎articles/active-directory/saas-apps/iqnavigatorvms-tutorial.md
Lines changed: 22 additions & 36 deletions b/‎articles/active-directory/saas-apps/iqnavigatorvms-tutorial.md
Lines changed: 22 additions & 36 deletions
diff --git a/‎articles/active-directory/saas-apps/iserver-portal-tutorial.md
Lines changed: 29 additions & 31 deletions b/‎articles/active-directory/saas-apps/iserver-portal-tutorial.md
Lines changed: 29 additions & 31 deletions
diff --git a/‎articles/active-directory/saas-apps/media/riskware-tutorial/details.png
27.3 KB b/‎articles/active-directory/saas-apps/media/riskware-tutorial/details.png
27.3 KB
diff --git a/‎articles/active-directory/saas-apps/media/riskware-tutorial/maintain.png
12.2 KB b/‎articles/active-directory/saas-apps/media/riskware-tutorial/maintain.png
12.2 KB
diff --git a/‎articles/active-directory/saas-apps/media/riskware-tutorial/menu.png
36.5 KB b/‎articles/active-directory/saas-apps/media/riskware-tutorial/menu.png
36.5 KB
diff --git a/‎articles/active-directory/saas-apps/media/riskware-tutorial/people.png
5.03 KB b/‎articles/active-directory/saas-apps/media/riskware-tutorial/people.png
5.03 KB
diff --git a/‎articles/active-directory/saas-apps/media/riskware-tutorial/profile.png
6.88 KB b/‎articles/active-directory/saas-apps/media/riskware-tutorial/profile.png
6.88 KB
diff --git a/‎articles/active-directory/saas-apps/media/riskware-tutorial/security.png
22.7 KB b/‎articles/active-directory/saas-apps/media/riskware-tutorial/security.png
22.7 KB
diff --git a/‎articles/active-directory/saas-apps/media/riskware-tutorial/status.png
36.5 KB b/‎articles/active-directory/saas-apps/media/riskware-tutorial/status.png
36.5 KB
diff --git a/‎articles/active-directory/saas-apps/media/sensoscientific-tutorial/admin.png
102 KB b/‎articles/active-directory/saas-apps/media/sensoscientific-tutorial/admin.png
102 KB
@@ -1,5 +1,5 @@
 ---
-title: 'Tutorial: Azure Active Directory single sign-on (SSO) integration with IQNavigator VMS | Microsoft Docs'
+title: 'Tutorial: Azure AD SSO integration with IQNavigator VMS'
 description: Learn how to configure single sign-on between Azure Active Directory and IQNavigator VMS.
 services: active-directory
 author: jeevansd
@@ -9,56 +9,52 @@ ms.service: active-directory
 ms.subservice: saas-app-tutorial
 ms.workload: identity
 ms.topic: tutorial
-ms.date: 10/23/2019
+ms.date: 06/29/2022
 ms.author: jeedes
 ---
 
-# Tutorial: Azure Active Directory single sign-on (SSO) integration with IQNavigator VMS
+# Tutorial: Azure AD SSO integration with IQNavigator VMS
 
 In this tutorial, you'll learn how to integrate IQNavigator VMS with Azure Active Directory (Azure AD). When you integrate IQNavigator VMS with Azure AD, you can:
 
 * Control in Azure AD who has access to IQNavigator VMS.
 * Enable your users to be automatically signed-in to IQNavigator VMS with their Azure AD accounts.
 * Manage your accounts in one central location - the Azure portal.
 
-To learn more about SaaS app integration with Azure AD, see [What is application access and single sign-on with Azure Active Directory](../manage-apps/what-is-single-sign-on.md).
-
 ## Prerequisites
 
 To get started, you need the following items:
 
 * An Azure AD subscription. If you don't have a subscription, you can get a [free account](https://azure.microsoft.com/free/).
 * IQNavigator VMS single sign-on (SSO) enabled subscription.
+* Along with Cloud Application Administrator, Application Administrator can also add or manage applications in Azure AD.
+For more information, see [Azure built-in roles](../roles/permissions-reference.md).
 
 ## Scenario description
 
 In this tutorial, you configure and test Azure AD SSO in a test environment.
 
-
-* IQNavigator VMS supports **IDP** initiated SSO
+* IQNavigator VMS supports **IDP** initiated SSO.
 
 > [!NOTE]
 > Identifier of this application is a fixed string value so only one instance can be configured in one tenant.
 
-
-
-## Adding IQNavigator VMS from the gallery
+## Add IQNavigator VMS from the gallery
 
 To configure the integration of IQNavigator VMS into Azure AD, you need to add IQNavigator VMS from the gallery to your list of managed SaaS apps.
 
-1. Sign in to the [Azure portal](https://portal.azure.com) using either a work or school account, or a personal Microsoft account.
+1. Sign in to the Azure portal using either a work or school account, or a personal Microsoft account.
 1. On the left navigation pane, select the **Azure Active Directory** service.
 1. Navigate to **Enterprise Applications** and then select **All Applications**.
 1. To add new application, select **New application**.
 1. In the **Add from the gallery** section, type **IQNavigator VMS** in the search box.
 1. Select **IQNavigator VMS** from results panel and then add the app. Wait a few seconds while the app is added to your tenant.
 
-
-## Configure and test Azure AD single sign-on for IQNavigator VMS
+## Configure and test Azure AD SSO for IQNavigator VMS
 
 Configure and test Azure AD SSO with IQNavigator VMS using a test user called **B.Simon**. For SSO to work, you need to establish a link relationship between an Azure AD user and the related user in IQNavigator VMS.
 
-To configure and test Azure AD SSO with IQNavigator VMS, complete the following building blocks:
+To configure and test Azure AD SSO with IQNavigator VMS, perform the following steps:
 
 1. **[Configure Azure AD SSO](#configure-azure-ad-sso)** - to enable your users to use this feature.
     1. **[Create an Azure AD test user](#create-an-azure-ad-test-user)** - to test Azure AD single sign-on with B.Simon.
@@ -71,15 +67,15 @@ To configure and test Azure AD SSO with IQNavigator VMS, complete the following
 
 Follow these steps to enable Azure AD SSO in the Azure portal.
 
-1. In the [Azure portal](https://portal.azure.com/), on the **IQNavigator VMS** application integration page, find the **Manage** section and select **single sign-on**.
+1. In the Azure portal, on the **IQNavigator VMS** application integration page, find the **Manage** section and select **single sign-on**.
 1. On the **Select a single sign-on method** page, select **SAML**.
-1. On the **Set up single sign-on with SAML** page, click the edit/pen icon for **Basic SAML Configuration** to edit the settings.
+1. On the **Set up single sign-on with SAML** page, click the pencil icon for **Basic SAML Configuration** to edit the settings.
 
-   ![Edit Basic SAML Configuration](common/edit-urls.png)
+    ![Screenshot shows to edit Basic S A M L Configuration.](common/edit-urls.png "Basic Configuration")
 
-1. On the **Basic SAML Configuration** section, enter the values for the following fields:
+1. On the **Basic SAML Configuration** section, perform the following steps:
 
-    a. In the **Identifier** text box, type a URL:
+    a. In the **Identifier** text box, type the value:
     `iqn.com`
 
     b. In the **Reply URL** text box, type a URL using the following pattern:
@@ -95,11 +91,11 @@ Follow these steps to enable Azure AD SSO in the Azure portal.
 
 1. IQNavigator application expect the Unique User Identifier value in the Name Identifier claim. Customer can map the correct value for the Name Identifier claim. In this case we have mapped the user.UserPrincipalName for the demo purpose. But according to your organization settings you should map the correct value for it.
 
-	![image](common/edit-attribute.png)
+	![Screenshot shows the image of IQNavigator application.](common/edit-attribute.png "Image")
 
 1. On the **Set up single sign-on with SAML** page, In the **SAML Signing Certificate** section, click copy button to copy **App Federation Metadata Url** and save it on your computer.
 
-	![The Certificate download link](common/copy-metadataurl.png)
+	![Screenshot shows the Certificate download link.](common/copy-metadataurl.png "Certificate")
 
 ### Create an Azure AD test user
 
@@ -120,13 +116,7 @@ In this section, you'll enable B.Simon to use Azure single sign-on by granting a
 1. In the Azure portal, select **Enterprise Applications**, and then select **All applications**.
 1. In the applications list, select **IQNavigator VMS**.
 1. In the app's overview page, find the **Manage** section and select **Users and groups**.
-
-   ![The "Users and groups" link](common/users-groups-blade.png)
-
 1. Select **Add user**, then select **Users and groups** in the **Add Assignment** dialog.
-
-	![The Add User link](common/add-assign-user.png)
-
 1. In the **Users and groups** dialog, select **B.Simon** from the Users list, then click the **Select** button at the bottom of the screen.
 1. If you're expecting any role value in the SAML assertion, in the **Select Role** dialog, select the appropriate role for the user from the list and then click the **Select** button at the bottom of the screen.
 1. In the **Add Assignment** dialog, click the **Assign** button.
@@ -141,16 +131,12 @@ In this section, you create a user called Britta Simon in IQNavigator VMS. Work
 
 ## Test SSO 
 
-In this section, you test your Azure AD single sign-on configuration using the Access Panel.
-
-When you click the IQNavigator VMS tile in the Access Panel, you should be automatically signed in to the IQNavigator VMS for which you set up SSO. For more information about the Access Panel, see [Introduction to the Access Panel](https://support.microsoft.com/account-billing/sign-in-and-start-apps-from-the-my-apps-portal-2f3b1bae-0e5a-4a86-a33e-876fbd2a4510).
-
-## Additional resources
+In this section, you test your Azure AD single sign-on configuration with following options.
 
-- [ List of Tutorials on How to Integrate SaaS Apps with Azure Active Directory ](./tutorial-list.md)
+* Click on Test this application in Azure portal and you should be automatically signed in to the IQNavigator VMS for which you set up the SSO.
 
-- [What is application access and single sign-on with Azure Active Directory? ](../manage-apps/what-is-single-sign-on.md)
+* You can use Microsoft My Apps. When you click the IQNavigator VMS tile in the My Apps, you should be automatically signed in to the IQNavigator VMS for which you set up the SSO. For more information about the My Apps, see [Introduction to the My Apps](../user-help/my-apps-portal-end-user-access.md).
 
-- [What is conditional access in Azure Active Directory?](../conditional-access/overview.md)
+## Next steps
 
-- [Try IQNavigator VMS with Azure AD](https://aad.portal.azure.com/)
+Once you configure IQNavigator VMS you can enforce session control, which protects exfiltration and infiltration of your organization’s sensitive data in real time. Session control extends from Conditional Access. [Learn how to enforce session control with Microsoft Cloud App Security](/cloud-app-security/proxy-deployment-aad).
@@ -1,5 +1,5 @@
 ---
-title: 'Tutorial: Azure Active Directory single sign-on (SSO) integration with iServer Portal | Microsoft Docs'
+title: 'Tutorial: Azure AD SSO integration with iServer Portal'
 description: Learn how to configure single sign-on between Azure Active Directory and iServer Portal.
 services: active-directory
 author: jeevansd
@@ -9,49 +9,49 @@ ms.service: active-directory
 ms.subservice: saas-app-tutorial
 ms.workload: identity
 ms.topic: tutorial
-ms.date: 08/28/2019
+ms.date: 06/29/2022
 ms.author: jeedes
 ---
 
-# Tutorial: Azure Active Directory single sign-on (SSO) integration with iServer Portal
+# Tutorial: Azure AD SSO integration with iServer Portal
 
 In this tutorial, you'll learn how to integrate iServer Portal with Azure Active Directory (Azure AD). When you integrate iServer Portal with Azure AD, you can:
 
 * Control in Azure AD who has access to iServer Portal.
 * Enable your users to be automatically signed-in to iServer Portal with their Azure AD accounts.
 * Manage your accounts in one central location - the Azure portal.
 
-To learn more about SaaS app integration with Azure AD, see [What is application access and single sign-on with Azure Active Directory](../manage-apps/what-is-single-sign-on.md).
-
 ## Prerequisites
 
 To get started, you need the following items:
 
 * An Azure AD subscription. If you don't have a subscription, you can get a [free account](https://azure.microsoft.com/free/).
 * iServer Portal single sign-on (SSO) enabled subscription.
+* Along with Cloud Application Administrator, Application Administrator can also add or manage applications in Azure AD.
+For more information, see [Azure built-in roles](../roles/permissions-reference.md).
 
 ## Scenario description
 
 In this tutorial, you configure and test Azure AD SSO in a test environment.
 
-* iServer Portal supports **SP and IDP** initiated SSO
+* iServer Portal supports **SP and IDP** initiated SSO.
 
-## Adding iServer Portal from the gallery
+## Add iServer Portal from the gallery
 
 To configure the integration of iServer Portal into Azure AD, you need to add iServer Portal from the gallery to your list of managed SaaS apps.
 
-1. Sign in to the [Azure portal](https://portal.azure.com) using either a work or school account, or a personal Microsoft account.
+1. Sign in to the Azure portal using either a work or school account, or a personal Microsoft account.
 1. On the left navigation pane, select the **Azure Active Directory** service.
 1. Navigate to **Enterprise Applications** and then select **All Applications**.
 1. To add new application, select **New application**.
 1. In the **Add from the gallery** section, type **iServer Portal** in the search box.
 1. Select **iServer Portal** from results panel and then add the app. Wait a few seconds while the app is added to your tenant.
 
-## Configure and test Azure AD single sign-on for iServer Portal
+## Configure and test Azure AD SSO for iServer Portal
 
 Configure and test Azure AD SSO with iServer Portal using a test user called **B.Simon**. For SSO to work, you need to establish a link relationship between an Azure AD user and the related user in iServer Portal.
 
-To configure and test Azure AD SSO with iServer Portal, complete the following building blocks:
+To configure and test Azure AD SSO with iServer Portal, perform the following steps:
 
 1. **[Configure Azure AD SSO](#configure-azure-ad-sso)** - to enable your users to use this feature.
     1. **[Create an Azure AD test user](#create-an-azure-ad-test-user)** - to test Azure AD single sign-on with B.Simon.
@@ -64,15 +64,15 @@ To configure and test Azure AD SSO with iServer Portal, complete the following b
 
 Follow these steps to enable Azure AD SSO in the Azure portal.
 
-1. In the [Azure portal](https://portal.azure.com/), on the **iServer Portal** application integration page, find the **Manage** section and select **single sign-on**.
+1. In the Azure portal, on the **iServer Portal** application integration page, find the **Manage** section and select **single sign-on**.
 1. On the **Select a single sign-on method** page, select **SAML**.
-1. On the **Set up single sign-on with SAML** page, click the edit/pen icon for **Basic SAML Configuration** to edit the settings.
+1. On the **Set up single sign-on with SAML** page, click the pencil icon for **Basic SAML Configuration** to edit the settings.
 
-   ![Edit Basic SAML Configuration](common/edit-urls.png)
+   ![Screenshot shows to edit Basic S A M L Configuration.](common/edit-urls.png "Basic Configuration")
 
-1. On the **Basic SAML Configuration** section, if you wish to configure the application in **IDP** initiated mode, enter the values for the following fields:
+1. On the **Basic SAML Configuration** section, perform the following steps:
 
-    a. In the **Identifier** text box, type a URL using the following pattern:
+    a. In the **Identifier** text box, type a value using the following pattern:
     `iserver-portal-<myiserverportal>`
 
     b. In the **Reply URL** text box, type a URL using the following pattern:
@@ -88,15 +88,15 @@ Follow these steps to enable Azure AD SSO in the Azure portal.
 
 1. In the **SAML Signing Certificate** section, click **Edit** button to open **SAML Signing Certificate** dialog.
 
-	![Edit SAML Signing Certificate](common/edit-certificate.png)
+	![Screenshot shows to Edit SAML Signing Certificate.](common/edit-certificate.png "Certificate")
 
 1. In the **SAML Signing Certificate** section, copy the **Thumbprint Value** and save it on your computer.
 
-    ![Copy Thumbprint value](common/copy-thumbprint.png)
+    ![Screenshot shows to Copy Thumbprint value.](common/copy-thumbprint.png "Values")
 
 1. On the **Set up iServer Portal** section, copy the appropriate URL(s) based on your requirement.
 
-	![Copy configuration URLs](common/copy-configuration-urls.png)
+	![Screenshot shows to copy configuration appropriate U R L.](common/copy-configuration-urls.png "Metadata") 
 
 ### Create an Azure AD test user
 
@@ -117,13 +117,7 @@ In this section, you'll enable B.Simon to use Azure single sign-on by granting a
 1. In the Azure portal, select **Enterprise Applications**, and then select **All applications**.
 1. In the applications list, select **iServer Portal**.
 1. In the app's overview page, find the **Manage** section and select **Users and groups**.
-
-   ![The "Users and groups" link](common/users-groups-blade.png)
-
 1. Select **Add user**, then select **Users and groups** in the **Add Assignment** dialog.
-
-	![The Add User link](common/add-assign-user.png)
-
 1. In the **Users and groups** dialog, select **B.Simon** from the Users list, then click the **Select** button at the bottom of the screen.
 1. If you're expecting any role value in the SAML assertion, in the **Select Role** dialog, select the appropriate role for the user from the list and then click the **Select** button at the bottom of the screen.
 1. In the **Add Assignment** dialog, click the **Assign** button.
@@ -138,16 +132,20 @@ In this section, you create a user called B.Simon in iServer Portal. Work with
 
 ## Test SSO 
 
-In this section, you test your Azure AD single sign-on configuration using the Access Panel.
+In this section, you test your Azure AD single sign-on configuration with following options. 
+
+#### SP initiated:
+
+* Click on **Test this application** in Azure portal. This will redirect to iServer Portal Sign-On URL where you can initiate the login flow.  
 
-When you click the iServer Portal tile in the Access Panel, you should be automatically signed in to the iServer Portal for which you set up SSO. For more information about the Access Panel, see [Introduction to the Access Panel](https://support.microsoft.com/account-billing/sign-in-and-start-apps-from-the-my-apps-portal-2f3b1bae-0e5a-4a86-a33e-876fbd2a4510).
+* Go to iServer Portal Sign-On URL directly and initiate the login flow from there.
 
-## Additional resources
+#### IDP initiated:
 
-- [ List of Tutorials on How to Integrate SaaS Apps with Azure Active Directory ](./tutorial-list.md)
+* Click on **Test this application** in Azure portal and you should be automatically signed in to the iServer Portal for which you set up the SSO. 
 
-- [What is application access and single sign-on with Azure Active Directory? ](../manage-apps/what-is-single-sign-on.md)
+You can also use Microsoft My Apps to test the application in any mode. When you click the iServer Portal tile in the My Apps, if configured in SP mode you would be redirected to the application Sign-On page for initiating the login flow and if configured in IDP mode, you should be automatically signed in to the iServer Portal for which you set up the SSO. For more information about the My Apps, see [Introduction to the My Apps](../user-help/my-apps-portal-end-user-access.md).
 
-- [What is conditional access in Azure Active Directory?](../conditional-access/overview.md)
+## Next steps
 
-- [Try iServer Portal with Azure AD](https://aad.portal.azure.com/)
+Once you configure iServer Portal you can enforce session control, which protects exfiltration and infiltration of your organization’s sensitive data in real time. Session control extends from Conditional Access. [Learn how to enforce session control with Microsoft Cloud App Security](/cloud-app-security/proxy-deployment-aad).