SSO Integration Guideline For Microsoft Entra ID

SSO Integration Guideline For Microsoft Entra ID (formerly Azure Active Directory)

Step 1: Setup Microsoft Entra ID

1.1 Login to Azure Portal and go to Microsoft Entra ID > Enterprise Applications

1.2 Create SAML application

Click Create New application (see above image) > Create your own application > Make sure you select “Integrate any other application you don’t find in the gallery (Non-gallery)“

1.3 Configure Single sign-on SAML

You will see the below screen after clicking on the SAML option

Edit “Basic SAML Configuration”

• Add identifier (Entity ID):

  • Use this placeholder value urn:auth0:drovacorp:placeholder-will-update-later

  • Drova will provide the correct value in the later step

• Add reply URL

  • Use this placeholder value https://auth.drova.com/login/callback?connection=placeholder-will-update-later

  • Drova will provide the correct value in the later step
    
    

Setup Basic SAML Configuration

Use placeholder values

Step 2: Share SSO setting with Drova Team

Send an email to Drova Customer Success (support@drova.com) with the following information

• App Federation Metadata Url

• Certificate (Base64)
  
  

Step 3: Correct the Identifier (Entity ID) and Reply URL

When Drova completes configuring the SSO on our side, we will send back to you the following information, you can finalize the configuration on your side.

• Identifier (Entity ID)

• Reply URL
  
  

Update Basic SAML Configuration

Step 4: Testing

After completing all the above steps, we will set up a video call to test SSO. Please be aware that:

• Drova enables SSO by email domain(s), once we turn on SSO, all users will be required to log in via SSO. The users who are already logged in can continue the work and the SSO will trigger for the next login.

• Drova doesn’t have a test environment for customers to test SSO

• We can switch on/off very quickly, around 2 or 3 minutes

To avoid the impact, we recommend performing the test during quiet hours, ideally after working hours.

• Related Articles

• SSO Integration Guideline for Okta

  Step 1: Create and configure SAML2 App on Okta 1.1 Create Application on Okta 1.2 Configure SAML Single sign-on URL: Use this placeholder value https://auth.drova.com/login/callback?connection=placeholder-will-update-later Drova will provide the ...

• SSO FAQ

  General Q. Can SSO be used in combination with a normal password login? A. No. Our SSO system means that all users for a configured email domain will be required to use SSO to login. Q. Can I test SSO login before enabling? A. Drova can enable SSO on ...

• SSO Production Documentation

  Single Sign-On Overview Identity allows connecting customers' users directories as an identity provider (IDP) and can be referred to as the "Identity Federation." When the federation is configured, the Identity delegates authentication and ...

• Logging in with Single Sign-On (SSO)

  Are you looking to add a new Position user to the system ie. a user requiring access to the full Drova GRC system who may own, be responsible for, manage record items, or be assigned tasks to complete? The system provides the capability to add new ...

• Identity Provider Information for SSO

  Contact support@drova.com and request that your organisation can log-in to the Drova Platform via SSO. Support will request the Identity Provider Information; 3. Support will need the following Service Provider Information to be provided; 4. Once all ...