# Single Sign-On with Microsoft Entra

## Step 1 - Obtain the SAML Provider Details from Updraft

> Only Owner of an Updraft Organization is able to add an SSO Integration

1. Open your Account Settings as an Owner
2. Go to the Security Page
3. Click Add SSO
4. You will see now your SAML configuration
5. Store them

## Step 2 - Configure your Identity Provider Microsoft Entra

Now that you have your Service Provider information, it’s time to configure it.

## Step 3 - Create your SSO identity Provider Microsoft Entra app

1. Login to your [Azure Portal](https://portal.azure.com/#home)
2. Go to All Services
3. Search for 'Enterprise Applications'
4. Select Enterprise Applications
5. Click on New Application
6. Click on Create your own application
7. Type in a name
8. Select: Integration any other application you don't find in the gallery (non-gallery)

## Step 4 - Configure your SSO identity Provider Microsoft Entra app

1. Click on Set up Single Sign On Button

![](/files/RQBzLt91WcOIn4X8wKb8)

2. You will be redirected to the SSO with SAML Page

## Step 5 - Basic SAML Configuration

1. Click on Edit
2. Add Entity ID: getupdraft
3. Add Reply URL: [https://getupdraft.com/saml2\_auth/acs/](https://u2.getupdraft.com/saml2_auth/acs/)
4. Click on Save

## Step 6 - Attributes & Claims

Add attributes and claims

1. Name ID = user.userprincipalname

Additional claims:

<figure><img src="/files/OQmfwoalK8sIKelNbkUq" alt=""><figcaption></figcaption></figure>

Save.

## Step 7- Create SAML Integration: Get your XML file from Microsoft Entra&#x20;

1. On the SAML-based Sign-on page go to step 3: Saml certificates
2. Click on download the Federation Metadata XML

## Step 8- Upload the .xml metadata to your Updraft Organization

1. Go back to your Updraft Organization
2. Account Settings
3. Security Page
4. Click on Add Microsoft Entra
5. Upload the obtained .xml file
6. Save it
7. Done!

## Step 9 - verify the integration

After following all the above steps, log in to your Updraft account to verify that you are now able to sign in with Microsoft Entra.&#x20;

If the integration was successful:

1. If you are opening your subdomain.getupdraft.com/login page you will see the **Login with Entra Button**
2. When your assigned Users click on the Login with SSO button they will  be redirected to the Microsoft login page
3. Upon successful authentication with Microsoft, your users will be logged into Updraft automatically and redirected to the dashboard page of Updraft
4. A new account for your uses will be created in Updraft after they logged-in the first time
5. Now you can assign projects and apps to your users.

&#x20;If you encounter any issues, please refer back to the previous steps or reach out to the support team for assistance.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.getupdraft.com/dashboard/account/security-single-sign-on/single-sign-on-with-microsoft-entra.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.