You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: src/content/docs/authenticate/enterprise-connections/entra-id-saml.mdx
+5-7Lines changed: 5 additions & 7 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -45,9 +45,8 @@ You can make a connection available only to a specific organization, or you can
45
45
46
46
1. Go to **Settings > Environment > Authentication**.
47
47
2. Scroll to the **Enterprise connection** section and select **Add connection**. The **Add connection** window opens.
48
-
3. Select the Microsoft connection type you want and then select **Save**. Currently we support WS Federated and OpenID types.
49
-
4. On the tile for the new connection, select **Configure**.
50
-
5. Next: 'Step 2: Configure the connection'.
48
+
3. Select the Microsoft connection type you want and then select **Next**. Currently we support WS Federated, SAML, and OpenID types.
49
+
4. Next: 'Step 2: Configure the connection'.
51
50
52
51
## Step 2: Configure the connection in Kinde
53
52
@@ -68,10 +67,9 @@ You can make a connection available only to a specific organization, or you can
68
67
69
68
5. If you use home realm domains, the sign in button is hidden on the auth screen by default. To show the SSO button, select the **Always show sign-in button** option.
70
69
6. Copy the ACS URL, you will need this for the SAML provider app.
71
-
7. Select if you want to **enable single sign out**. This will sign the user out of their Microoft Entra ID SAML account and end all sessions when they sign out.
72
-
8. If you want to enable just-in-time (JIT) provisioning, select the **Create a user record in Kinde** option. This saves time adding users manually or via API later.
73
-
9. Select if you want to treat this connection as a trusted provider. A [trusted provider](/authenticate/about-auth/identity-and-verification/) is one that guarantees the email they issue is verified. We recommend leaving this off for maximum security.
74
-
10. Select **Save**.
70
+
7. If you want to enable just-in-time (JIT) provisioning, select the **Create a user record in Kinde** option. This saves time adding users manually or via API later.
71
+
8. Select if you want to treat this connection as a trusted provider. A [trusted provider](/authenticate/about-auth/identity-and-verification/) is one that guarantees the email they issue is verified. We recommend leaving this off for maximum security.
72
+
9. Select **Save**.
75
73
76
74
## Step 3: Create and configure an Entra ID enterprise application
0 commit comments