Login   Sign Up Contact Us
Hello there!

Need Help? We are right here!
miniOrange Email Support
success

Thanks for your Enquiry.

If you don't hear from us within 24 hours, please feel free to send a follow-up email to info@xecurify.com

Search Results:

×
Microsoft SSO Partner logo

Office 365 Single Sign-On (SAML SSO)

Office 365 Single Sign-On (SSO) integration lets you to configure client application that uses Identity Provider (IDP), Directory - Okta, Ping, Azure Active Directory, ADFS for SSO authentication. With SSO being enabled users can use the same Office 365 username and password (credentials) to access multiple apps as they don’t need to remember different passwords for multiple apps.


Seamless Office 365 SSO configuration by miniOrange

Office 365 SAML Single Sign-On (SSO) solution by miniOrange provides secure Single Sign-On access into Office 365 using a single set of login credentials. This allows organizations to secure access to their Office 365 team and easily manage user access, while also providing a seamless login experience for users.

With miniOrange Office 365 SSO, you can:

  • Enable your users to automatically login to Office 365
  • Have centralized and easy access control of the users
  • Connect easily with any external identity source like Azure AD, ADFS, Cognito, etc

Along with SSO, Users requirement around advanced security for Office 365 helped us to introduce enhanced Office 365 Two-Factor Authentication solution. Office 365 2FA security makes it easier for users and organizations to safeguard and prevent themselves from security breaches.


Get Free Installation Help


miniOrange offers free help through a consultation call with our System Engineers to Install or Setup Office 365 SSO solution in your environment with 30-day free trial.

For this, you need to just send us an email at idpsupport@xecurify.com to book a slot and we'll help you in no time.



Supported SSO Features

miniOrange Office 365 SAML integration supports the following features:

  • SP Initiated SSO Login: Users can access their Office 365 account via a URL or bookmark. They will automatically be redirected to the miniOrange portal for login. Once they've signed on, they'll be automatically redirected and logged into Office 365.
  • IdP Initiated SSO Login: Users need to login to the miniOrange first , and then click on the Office 365 icon on the applications dashboard to access Office 365.(If you have set up any more Identity Sources, you will log in to that platform).

Video Setup Guide



4. Now sign in to your Microsoft Office 365 account with miniOrange IdP by either of the two steps:

    1. Using SP initiated login :-

    1. Go to Office 365 Login and click on sign-in
    2. You will be redirected to Microsoft Online portal. Here you have to enter the UPN of the user.(It should contain the domain that is federated with miniOrange)
    3. Now you will be redirected to miniOrange IdP Sign On Page.

      4. O365 SSO: Enter Microsoft UPN for Single Sign-on SSO integration with Office 365

    4. Enter your login credential and click on Login. You will be automatically logged in to your Office 365 account.
      5. O365 SSO: Entering Office 365 Credentials you have successfully loginto Office 365 using Single Sign-On SSO integration

    2. Using IdP initiated login :-

    1. Login to your miniOrange Self Service Console as an End User and click on the Office 365 icon on your Dashboard.
    2. Once you click on Office 365 you don't need to enter credentials again you will be redirected to Office 365 account.
      3. O365 SSO: Select office 365 to Single Sign-On into Office 365

Troubleshooting

How to identify errors in SAML assertions sent by your IDP?

  • Use the SAML Assertion Validator to troubleshoot single sign-on (SSO) login problems and identify errors in SAML assertions sent by your identity provider. Click on this link know more about the error identification in SAML Assertions.

How can I trace and export the SAML tracer logs?

  • Install SAML Tracer on your preferred browser:

    For Firefox: Add SAML tracer Add-On from the Firefox marketplace.

    For Chrome / Edge or Chromium-based browsers: Install the SAML tracer extension from Chrome Webstore.

  • Steps to Capture logs:
    • Make sure the SAML Tracer window is opened before you start the SSO flow. (You can open it by clicking the SAML Tracer icon in your extensions list in the browser toolbar.)
    • Run the SSO flow to reproduce the issue. You will see SAML Tracer getting populated with all the URLs.
    • Hit Pause on SAML Tracer, once the issue is reproduced to avoid extra logs.
    • You will have something similar to the below pic in the SAML tracer.
      • Salesforce SSO reproduced issue

  • Steps to export logs:
    • To export logs, click the export option on the top of the SAML Tracer. (Refer to screenshot below).
      • Salesforce SSO tracer export option

    • You will be prompted with the Export SAML trace preferences window, select the None field, and then click on the Export option. (This option will allow keeping values in the original state which is required to further investigate the issue.)
      • Salesforce SSO preference window

    • Click Export. This will download a JSON file on your system.
    • Send the log file to the developer you are in touch with or at idpsupport@xecurify.com. Also, please attach an error screenshot. This would help us debug the issue.
    • If you are still not able to get the logs, feel free to let us know.

How to remove miniOrange SSO/2FA from Office 365?

  • Open PowerShell as admin.
  • Run the command Connect-MsolService.
  • Enter your Microsoft Credentials. [Use Microsoft global admin who has Microsoft in his domain]
  • Run the below command:
Set-MsolDomainAuthentication -Authentication Managed -DomainName <domainName> -PreferredAuthenticationProtocol SAMLP

External References

  1. Office 365 + miniOrange
  2. IP Restriction for Office 365
  3. Office 365 provisioning configuration