Knak

- Admin access to both Knak and Azure
- A test user configured in both systems

___________________________________________________________

Go to Admin &gt; Company &gt; Settings &gt; SSO in Knak.

“Configure” button in admin settings.

- Go to Admin &gt; Company &gt; Settings &gt; SSO in Knak.
- Click Configure.
 “Configure” button in admin settings.

- Single Sign-On URL
 Example: <code>https://knak.auth0.com/login/callback?connection=myCompany</code>
- Audience URI
 Example: <code>urn:auth0:knak:myCompany</code>

- Copy the following values:
 - Single Sign-On URL
 Example: <code>https://knak.auth0.com/login/callback?connection=myCompany</code>
 - Audience URI
 Example: <code>urn:auth0:knak:myCompany</code>

Step 2: Set Up SAML Configuration in Azure

Go to Azure Portal &gt; Enterprise Applications.

- Select Add &gt; Enterprise Application &gt; Create your own Application.
- Input Knak as the application name.
- Select Integrate any other application you don’t find in the gallery (non gallery)
- Press Create.

Navigate to Single Sign-on &gt; SAML-based Sign-On

- Paste the Single Sign-On URL into the Reply URL (Assertion Consumer Service URL) field.
- Paste the Audience URI into the Identifier (Entity ID) field.

- Go to Azure Portal &gt; Enterprise Applications.
- Create your Knak application.
 - Select Add &gt; Enterprise Application &gt; Create your own Application.
 - Input Knak as the application name.
 - Select Integrate any other application you don’t find in the gallery (non gallery)
 - Press Create.
- Navigate to Single Sign-on &gt; SAML-based Sign-On
- Enter the values from Knak:
 - Paste the Single Sign-On URL into the Reply URL (Assertion Consumer Service URL) field.
 - Paste the Audience URI into the Identifier (Entity ID) field. 
 Azure SAML fields.

Note: Do not populate the Sign on URL (Optional) field.

Step 3: Verify SAML Attributes and Claims

In the Azure Portal, go to the Attributes and Claims section.

Share the screenshot with your Knak admin to confirm the SAML claims are configured correctly.

- In the Azure Portal, go to the Attributes and Claims section.
- Take a screenshot of the box.
- Share the screenshot with your Knak admin to confirm the SAML claims are configured correctly.
 Claims configuration page.

Ensure the Unique User Identifier (Name ID) is set to an attribute that matches the email in Knak. In most cases this would be <code>user.mail</code>

Manage claims page source attribute user.mail

- Ensure the Unique User Identifier (Name ID) is set to an attribute that matches the email in Knak. In most cases this would be <code>user.mail</code>
 Manage claims page source attribute user.mail

In Azure, download the certificate from the third configuration box.

- Choose the Base64 format.
 Base64 certificate download area Azure.

In Knak, enter this certificate into the Public Key Certificate field in the SSO settings.

Browse button to select certification in Knak.

- In Azure, download the certificate from the third configuration box.
 - Choose the Base64 format.
 Base64 certificate download area Azure.
- Send the certificate to your Knak admin.
- In Knak, enter this certificate into the Public Key Certificate field in the SSO settings.
 Browse button to select certification in Knak.

Under the Setup Knak Demo section, copy the Login URL.

Paste the Login URL to the Identity Provider Single Sign On URL section in Knak.

- Under the Setup Knak Demo section, copy the Login URL.
 SSO URL field in Azure.
- Paste the Login URL to the Identity Provider Single Sign On URL section in Knak.
 SSO URL field in Knak.

Note: The Single Sign On URL set here is separate from the User Access URL which you can send to Knak Support to set up a redirect to your SSO login page. More info in Step 7.

Go to Azure Portal &gt; Enterprise Applications &gt; yourKnakProfile &gt; Users and Groups.

Add a user or group that exists in both Azure and Knak.

- Example: an Azure Active Directory (AAD) group named <code>Knak_Users</code>

- Go to Azure Portal &gt; Enterprise Applications &gt; yourKnakProfile &gt; Users and Groups.
- Add a user or group that exists in both Azure and Knak.
 - Example: an Azure Active Directory (AAD) group named <code>Knak_Users</code>

In Azure, go to Enterprise Applications &gt; yourKnakProfile &gt; Properties.

- The link should have the following syntax: <a href="https://launcher.myapps.microsoft.com" rel="nofollow noopener noreferrer" target="_blank">https://launcher.myapps.microsoft.com</a>

Open this URL in a browser and attempt to log in using a test account.

- Ensure the test account has access in both Azure and Knak.

1. In Azure, go to Enterprise Applications &gt; yourKnakProfile &gt; Properties.
2. Find the User access URL.
 - The link should have the following syntax: <a href="https://launcher.myapps.microsoft.com" rel="nofollow noopener noreferrer" target="_blank">https://launcher.myapps.microsoft.com</a>
3. Open this URL in a browser and attempt to log in using a test account.
 - Ensure the test account has access in both Azure and Knak.

Note: After the support team sets up your redirect URL, users must log in successfully through your SSO provider. The login process is browser-based and sets a cookie after successful sign-in. Once users log in, they will be automatically redirected to your SSO login page in the future. The email alone will not trigger a redirect - Knak requires the full SSO authentication flow through Auth0 to enable redirection.

Need more help? Contact support via live chat using the chat bubble in the bottom right corner or email <a href="mailto:support@knak.com" rel="nofollow noopener noreferrer" target="_blank">support@knak.com</a>

Connect your Azure Active Directory with Knak to enable secure, single sign-on (SSO) access for your team.

Azure SSO

Find answers and get help from Intercom Support and Community Experts

This site employs cookies and other technologies that we and our third party vendors use to monitor and record personal information about you and your interactions with the site (including content viewed, cursor movements, screen recordings, and chat contents) for the purposes described in our Cookie Policy. By continuing to visit our site, you agree to our {websiteTermsLink}, {privacyPolicyLink} and {cookiePolicyLink}.

This site uses cookies and similar technologies ("cookies") as strictly necessary for site operation. We and our partners also would like to set additional cookies to enable site performance analytics, functionality, advertising and social media features. See our {cookiePolicyLink} for details. You can change your cookie preferences in our Cookie Settings.

We use cookies to make our site work and also for analytics and advertising purposes. You can enable or disable optional cookies as desired. See our {cookiePolicyLink} for more details.

Advertising cookies are set by our advertising partners to collect information about your use of the site, our communications, and other online services over time and with different browsers and devices. They use this information to show you ads online that they think will interest you and measure the ads' performance. Social media cookies are set by social media platforms to enable you to share content on those platforms, and are capable of tracking information about your activity across other online services for use as described in their privacy policies.

These cookies enable the website to provide enhanced functionality and personalisation. They may be set by us or by third party providers whose services we have added to our pages. If you do not allow these cookies then some or all of these services may not function properly.

These cookies are necessary for the website to function and cannot be switched off in our systems.

These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site.

You have the right to opt out of the sale of your personal information. See our {cookiePolicyLink} for more details about how we use your data.

Your Privacy Choices

We use cookies to enhance your experience. You can customize your cookie preferences below. See our {cookiePolicyLink} for more details.

Cookie Settings

Link, Press control-option-right-arrow to exit

Empty Help Center

Uh oh. That page doesn’t exist.

Disappointed

Neutral

Smiley

Thinking...

Searching through sources...

Analyzing...

Tickets submitted through the messenger or by a support agent in your conversation will appear here.

Azure SSO

Before You Begin

Video for Azure SSO Set Up Guidance

Step 1: Configure SSO in Knak

Step 2: Set Up SAML Configuration in Azure

Step 3: Verify SAML Attributes and Claims

Step 4: Provide the Certificate

Step 5: Add Identity Provider SSO URL

Step 6: Assign Users or Groups

Step 7: Test the Connection