Skip to content
Testsigma DOCS
Login Book a demo

Configuration

Setting up SAML-based SSO login for Testsigma in Azure

With Azure (by Microsoft) Active Directory, users can automatically sign into their cloud-hosted/on-premise applications for a hassle-free, secure sign-in experience.

You can use the Azure Active Directory Admin Center to enable single sign-on (SSO) for Testsigma. After you configure SSO, your users can sign in to our application by using their Azure AD credentials.

Prerequisites

  • Before you begin, ensure you have an Azure Account with Active Directory enabled and admin access to the Azure account.

I. Adding Testsigma Enterprise Application

Section titled “I. Adding Testsigma Enterprise Application”

  1. Login to Azure portal. Azure management portal

  2. Click the View button below “Manage Microsoft Entra ID”.

  3. In the Active Directory Overview page, click on + New application and choose Enterprise Application

  4. Click on + Create your own application In the overlay that opens up on the right, enter the name of the app you are integrating, and select option, ‘Integrate any other Application (Non-gallery)’ and click the Create button.

Add Testsigma in Azure AD

You’ll be redirected to the newly added Testsigma overview page.

Testsigma properties on Azure

II. Adding Users to the Enterprise Application

Section titled “II. Adding Users to the Enterprise Application”

  1. Click the Assign users and groups card to add the users in Azure AD to the recently added Testsigma app.

  2. Click on the + Add user/group on top. Add users to enable sign on for Testsigma

  3. In the next page, Add Assignment, click on the None selected link to open up the Users overlay. SSO enabled users for login Select the required users from the Users overlay that opens up on the right.

  4. Click on the Select button to pick and finalize the users list. You can find the list of added Users at the left pane under Users.

  5. To add assignments to these users, click Assign.

III. SAML Configuration on Azure in Testsigma

Section titled “III. SAML Configuration on Azure in Testsigma”

  1. Back in Testsigma Overview page on Azure, click option 2 i.e, Set up single sign on. set up sso login for Testsigma

  2. Select the SAML authentication option. You will be taken to the Setup Single Sign-on with SAML screen as shown below: SAML configuration settings for Testsigma

  3. Click on the Edit button on Section 1 - Basic SAML Configuration, enter the following details, and click Save:

  1. You need to put this identifier in place of <id> in Step 3 and click Save. Fill in basic configuration details for saml configuration

  2. Click on the Edit button of Section 2 - User Attributes & Claims. Under Required claim, click the Claim name/Claim value.

  3. In the Manage Claim page that now appears, select Source attribute as user.userprincipalname from the dropdown. Key/value-pairs attached to the user in Azure AD

  4. Click Save and go back to the previous SAML-based Sign-on page.

  5. Click on the Edit button for section 3 - SAML Signing Certificate, enter the following details, and click Save:

    • Signing Option: SAML response and assertion

    • Signing Algorithm: SHA-256 Drop-down

That’s all the configuration you need to perform on Azure App for SAML-based Sign-on.

  1. Now, navigate back to the SAML Sign-on page Download the XML file, ‘Federation Metadata XML’ by clicking the Download link under Section 3 - SAML Signing Certificate. Downloaded SAML certificate

  2. Open the XML File and copy the value under the key EntityDescriptor > Signature > KeyInfo > X509Data > X509Certificate Downloaded SAML certificate

You can just search for <X509Certificate> and copy the value between first occurrence of <X509Certificate> and <X509Certificate>

  1. Note down the following values from Section 4 - Set Up Testsigma App. - Azure AD Identifier - Login URL Azure AD Identifier

We will use the X509Certificate value, also the values above in Testsigma app in the next section.

IV. Azure Specific SAML Configuration in Testsigma

Section titled “IV. Azure Specific SAML Configuration in Testsigma”

Inside your Testsigma account, navigate to Settings>Security

  1. Click Proceed under SAML and enter the following details:
    • Entity ID: Same as Microsoft Entra Identifier (obtained from Section 4 in Azure SAML Setup page)
    • SSO URL: Same as Login URL (obtained from Section 4 in Azure SAML Setup page)
    • SAML certificate: Downloaded <X509Certificate> value (obtained in previous section from downloaded XML file). This value resides within the tag: <X509Certificate><X509Certificate> Paste this value.

Azure Specific SAML Configuration On Testsigma

  1. Click the Confirm button to finalize the changes. SAML will now be enabled.

V. Test the SAML Config

Section titled “V. Test the SAML Config”

  1. On Section 5 of the Single Sign-On option, you will find the option to test. Click Test.

  2. To test the sign-in, click on the ‘Sign in as current user’ option.

This will test the SAML-based login with the currently logged-in user. Test Testsigma Single Sign On

This will automatically log you into Testsigma.