With Azure Active Directory configured, we can now set up the SAML SSO on the JFrog Platform to work with it. In the Administration module, go to Security | SAML SSO, enable SAML integration, and enter the needed information as in the screenshot and the steps below:
- Enter the SAML Login and Logout URLs that were provided to you in the Setup JFrog Artifactory section.
- SAML Service Provider Name, enter what you have as the Identifier on the Azure side (which should be the base URL of your JFrog Platform service):
https://<servername>.jfrog.io/ui/login
- Enter the Base64 certificate previously downloaded from the SAML Signing Certificate section.
- Enter the user attributes for group and email (accessible from Azure side, step 3):
- The Group Attribute in the SAML login XML response.
- The Email Attribute is for when “Auto Create Artifactory Users” is enabled or an internal user exists, Artifactory will set the user's email to the value in this attribute that is returned by the SAML login XML response, as can be seen in the following image:
- Select other options as shown and click Save.