Connect to Microsoft Entra ID with SAML 2.0 (Template)

Use the Microsoft Entra ID template to configure a SAML 2.0 authentication method with Microsoft Entra ID. The template shows the Entity ID, ACS URL, and Single logout URL you need in Entra ID and requires the enterprise application metadata URL.

OpenID Connect bridge

By configuring a SAML 2.0 authentication method and an OpenID Connect application registration FoxIDs becomes a bridge between SAML 2.0 and OpenID Connect. FoxIDs then handles the SAML 2.0 connection as a Relying Party (RP) / Service Provider (SP) and you only need to care about OpenID Connect in your application.

Create the authentication method in FoxIDs

1) Start in FoxIDs Control Client

  1. Go to the Authentication tab
  2. Click New authentication
  3. Select Microsoft Entra ID - SAML 2.0
  4. Enter a name for the authentication method

Select Microsoft Entra ID template

2) Copy the FoxIDs application information

  1. Copy the Entity ID
  2. Copy the ACS URL
  3. Copy the Single logout URL
  4. Keep the page open

Create the Microsoft Entra ID enterprise application

3) Create the enterprise application in Microsoft Entra ID

  1. Open the Microsoft Entra admin center at http://entra.microsoft.com/
  2. Go to Enterprise applications
  3. Click New application
  4. Click Create your own application
  5. Enter a name for the application
  6. Click Create

Create enterprise application

4) Configure SAML single sign-on

  1. Open the Single sign-on blade and choose SAML
  2. In Basic SAML Configuration, add the values from FoxIDs:
    • Entity ID (Identifier)
    • ACS URL (Reply URL)
    • Single logout URL (Logout URL)
  3. Click Save

Basic SAML configuration

5) Copy the federation metadata URL

  1. In the SAML Certificates section, copy the App Federation Metadata URL

App Federation Metadata URL

Finish the authentication method in FoxIDs

6) Save the metadata URL and create

  1. Paste the App Federation Metadata URL into the required Metadata URL field
  2. Click Create

FoxIDs monitors the metadata URL. When Microsoft Entra ID rotates certificates, the new certificates are provisioned automatically.

Microsoft Entra ID template metadata

Test the authentication method

  1. Click Test authentication to create a test application
  2. Click Start the test to start the test

Microsoft Entra ID template test

Your Privacy

We use cookies to make your experience of our websites better. Click the 'Accept all cookies' button to agree to the use of cookies. To opt out of non-essential cookies, click 'Necessary cookies only'.

Visit our Privacy Policy page for more