Status Page SSO with Azure
Adding SAML single sign on to your status page provides authenticated access control. Only authorized and authenticated users can see your status page.
Roughly, the following steps are required to setup status page SSO in StatusGator.
- Configure an enterprise application in Azure.
- Configure StatusGator to use your Azure enterprise application for SSO into your status page
- Add users to your Azure enterprise application to grant them access to your status page.
NOTE: Status Page SSO requires a dedicated enterprise application. If you have already setup administrative SSO to access StatusGator using the pre-existing enterprise application for status pages will not work.
Log in to your Azure account as an admin. Find the Azure services list and locate the Enterprise applications icon. Click this icon to open enterprise applications. At the top of the All applications listing, find the New application link. Use this link to choose to create a new enterprise appliction.
Next select find the button to create your own application, and use it to start creating.
After clicking to create your own application, enter a sensible application name. We recommend "StatusGator status page".
After filling out the name, click the create button.
Next click on the Get started link in the Setup single sign on section.
Among the single sign on options, choose SAML.
You will be presented with a mult-section setup page. Edit section 1. Basic SAML Configuration.
These settings need to come from the StatusGator user interface. In another browser window log into StatusGator and open the administrative interface for your status page.
In the screen grab above, click 1. to navigate to your status page. Then activate teh Privacy tab 2. Finally select the SAML Single sign-on radio button. This will produce the fields pointed to by 4. We'll use these values to configure the Azure enterprise application for SSO below.
From the SSO page previously brought up in StatusGator copy the Issuer/ Audience URI (SP Entity ID). Add this above in the Identifier (Entity ID) field 1. From StatusGator copy the SSO URL and paste it to the fields highlighted in 2, 3, and 4 above. Then click save.
On the status page SSO configuration page in StatusGator previously, add the following settings:
Add users to your StatusPage application in Azure
Finally, visit the users and groups area and grant permission for users to access the status page.
NOTE: Identity provider initiated sign in with Azure is not functional. Simply visiting your status page should transparently log you into and show the status page. Clicking on the enterprise application in Office 365 will prompt the users for an email address on the StatusGator side and then single sign in your users.