Skip to main content
Skip table of contents

SSO Configuration Using Microsoft Entra

Entra Configuration

Log in to the Entra admin center (https://entra.microsoft.com/#home ) and navigate to Enterprise Applications. Click the ‘New application’ link at the top of the page

image-20250910-193953.png

Next, click on the ‘Create your own application’ link at the top of the page.

image-20250910-194013.png

In the ‘Create your own application’ pane enter a name for your application, make sure the radio button is set to ‘Integrate any other application you don’t find in the gallery', then click ‘Create’ at the bottom of the pane.

image-20250910-194219.png

After the application is created, select the option for ‘Setup single sign on’

image-20250910-194535.png

Select the single sign-on method SAML

image-20250910-194711.png

Click the pencil icon to edit the settings marked in red as ‘Required’ in section 1 and supply the values shown below:


Identifier (Entity ID): https://discover.gimmal.cloud/Account/Login

Reply URL: https://discover.gimmal.cloud/Account/SamlConsume

Screenshot 2024-06-28 152823.png

After saving those values, the certificate will be supplied in the SAML Certificates section 3. Download the Certificate (Base64) only. Save the downloaded certificate file in Notepad. You will need to supply this text to configure single sign-on in the Discover dashboard (see next section).

image-20250910-200003.png

Copy the Login URL shown in section 4. You will need this information to configure single sign-on in the Discover dashboard (see next section).

image-20250910-200231.png

Single Sign-on Configuration in the Discover Dashboard

  • Log in to the dashboard using an Administrator account.

  • Click the gear icon in the top right corner of the dashboard, select Settings, and navigate to the Single Sign-on tab

Screenshot (52).png


  • Set the following values:

Enable single sign-on: check the box for Main Login
Identity Provider Endpoint: Paste the login URL copied from Entra
Certificate: Paste the Base64 certificate you downloaded from Entra, copy the entire certificate text (including the BEGIN CERTIFICATE and END CERTIFICATE lines), and paste it into this field.

Base URL for SSO: Although it says 'optional' we recommend setting this value to: discover.gimmal.cloud

  • Click the Save button to update the settings.

Login Instructions

To log in to Discover using Single Sign-on, on the login page:

Click the Use Single Sign-on link


image-20250404-192436.png


Enter a valid Customer ID, then click Login.

image-20250404-192538.png


If the user's Entra credential is cached in the browser, the user will be logged in. If not, they will be redirected to the Microsoft 365 login page, prompted to enter their credentials, and then logged into Discover following successful authentication.

Checking the Force SAML Authentication box will ignore any cached credentials and force the user to re-enter their Entra login information.

Requiring SSO Authentication

It is possible to limit a user to SSO login only. To implement this restriction, click on the Administration module link at the top of the dashboard, select a user in the left navigation panel, then edit the user and check the SSO Only Login box as shown below:

Screenshot (53).png

When this option is set, the user will still be prompted to enter a Customer ID and User ID, but will never receive the password login prompt. Instead, they will be redirected to the SSO provider.

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close