You can set up single sign-on (SSO) to MiiTel using Security Assertion Markup Language (SAML) with Microsoft Entra ID (previously Azure Active Directory). If you want to disable the password login, please see Disable password authentication.
Permissions or subscriptions required
- You must have administrative privileges for Microsoft Entra ID.
- Each user's user name in Microsoft Entra ID must be the same as the MiiTel login ID.
IMPORTANT
- Only SP initiated SSO is supported. IdP Initiated SSO is not supported.
- This setting is unavailable if multiple SSOs are configured in a single Microsoft Entra ID organization.
Set up a Microsoft Entra ID
- Go to https://portal.azure.com/#home and sign in to your account.
- Click Show portal menu on the top left of the screen.
- Click Microsoft Entra ID.
- Click Manage > Enterprise applications.
- Click + New application.
- Click + Create your own application.
- Set up the following.
1What's the name of your app?: Enter the name of the setting.
2What are you looking to do with your application?: Select Integrate any other application you don't find in the gallery (Non-gallery).
- Click Create.
- Click Manage > Single sign-on.
- Click SAML.
- Click Edit on Basic SAML Configuration.
- Click Add identifier.
- Enter urn:amazon:cognito:sp:ap-northeast-1_0rvYrqp3y.
- Click Add reply URL.
- Enter https://auth.account.miitel.jp/saml2/idpresponse.
- Click Save.
Send a request to set SAML for MiiTel
After you set all the above, contact us with the following information.
- Claim name with "user.mail" as value (Follow these steps to confirm)
- Click Edit in Attributes & Claims
- Find the Claim name in the row with "user.mail" in the Value column.
- See App Federation Metadata Url in SAML Certificates
(Please contact us if it is difficult to share this URL due to security requirements, etc.)