How to assign users to an SSO application in Azure

How to assign users to an SSO application in Azure

Article: 100046409
Last Published: 2019-10-04
Ratings: 0 0
Product(s): SaaS Backup

Description

For SSO to be enabled for individual users, you must assign these users to your SSO application in Azure AD and then make sure these users exist in Veritas SaaS Backup. 

If you have not yet created an application in Azure, see the step-by-guide: How to create an Azure application for SSO

To assign users in Azure AD:

  1. Sign in to your Azure account.
  2. Select Enterprise applications.
  3. Find the application you created for SSO and click the name.

 

  1. Under Manage, select Users and groups.
  2. Click + Add user, and the Add Assignment window will open.

  1. Select Users and groups None Selected.

  1. Search for the users you want to be able to use SSO in the field provided, and then select them from the list below.

Here you must also include the Backup Administrator (the Global Admin who is setting up SSO) as well as all other users for whom you want to enable SSO.

  1. When all desired users appear under Selected members, click the Select button.  
  2. The number of users you selected will appear under Users and groups.

  1. Click the Assign button.

Now go to your Veritas SaaS Backup User Admin account:

  1. Select the hamburger icon and then select Users.
  2. In the list of users, make sure that all the users that were assigned to the Azure application exist in VSB. If there is no such user, then create a user with the same name and email address as the user in Office 365. 

Important: Veritas SaaS Backup is case sensitive so when creating a new user in VSB, make sure the email address is in the same case as the email address in the Active Directory.

TO SIGN IN WITH SSO:

To log in to the SaaS Backup console, the region identifier will need to be added to the URL in the following format:

  • EU: https://eu.saasbackup.veritas.com/v-signin.html
  • US: https://us.saasbackup.veritas.com/v-signin.html
  • AP: https://ap.saasbackup.veritas.com/v-signin.html

Now when these users try to sign in to their Veritas SaaS Backup account, they should enter only their email address and NOT their password.

When they click Sign In, the users will then be redirected to the Microsoft page where they should sign in using Microsoft login credentials.

When successfully signed in, the users will be redirected to their Veritas SaaS Backup account.

NOTE : The SaaS Backup user account case sensitivity must match the SSO configuration. If the format is incorrect, an error from SSO will be displayed noting that the user was not found.

 

Was this content helpful?