SAML with AzureAD

To configure AzureAD SAML for erwin Mart Portal authentication, follow these steps:

  1. Log in to Microsoft Entra admin center.

  2. Click Applications > Enterprise Applications.

  3. Click New application and create your non-gallery application with an appropriate name.

  4. Open your newly created application.

  5. Click Set up single sign on.

  6. Under single sign-on method, click SAML.

  7. Click Upload metadata file and select the file that you downloaded (erwin Mart Portal Configuration > Authentication tab > Download SP Metadata) during erwin Mart Portal configuration.
    Doing this retrieves and adds the necessary information for you.

  8. Copy the App Federation Metadata Url.

  9. Click Users and groups > Add user/group and select required users or groups.

  10. Click Select. Then, click Assign.

    Your SAML SSO set up for the required users is complete. Next, during erwin Mart Portal configuration, you can configure SAML

During erwin Mart Portal configuration, on the Authentication tab, for SAML, follow these steps:

  1. Select URL and paste the URL copied in step 8 above in the MetaData XML field.

  2. In the Group Attribute Name and User Email Attribute Name, enter appropriate attribute names that are configured for Azure AD SAML SSO.

Adding Groups in erwin Mart Portal

To add your AzureAD SAML groups to erwin Mart Portal, follow these steps:

  1. In the Microsoft Entra admin center, click GroupsAll groups > Download groups.
    A CSV file with all your groups is downloaded.

  2. Log in to erwin Mart Portalas administrator.

  3. Go to Application Menu > Users.
    The Users page appears.

  4. Click .
    The Add User page appears.

  5. Under User Type, select Group Upload User.

  6. Drag and drop the CSV file that you downloaded in step 1.

  7. Under Group Users, select the required groups.

  8. Click Submit.