Pure's logos
Pure Help Center for Pure Administrators

If you are a researcher, or other non-admin at your institution, click here.

  • Home
  • Announcements
  • Release Notes
  • Training
  • Events
  • Support
  • Contact Us
  • Home
  • Training
  • Technical user guides
  • External authentication mechanisms

How Can We Help?

Search Results

Filter By Category

Contact Us

If you still have questions or prefer to get help directly from an agent, please submit a request.
We’ll get back to you as soon as possible.

Contact us

Microsoft Entra ID / Azure AD Microsoft Entra ID / Azure AD

This guide will help you to set up the Single Sign-On with SAML for Pure using Microsoft Entra ID / Azure AD.

Please note

Depending on your organization and policies, you might not have permissions to create or modify Microsoft Entra ID / Azure AD. If that is the case, please contact your IT department or the department in charge of Identity management. 

 

Creation of a new Enterprise Application

 In the Azure Portal, go to or search for Enterprise Application and press the New application

Select what suits your needs, i.e. Microsoft Entra SAML Toolkit.

Add in the needed information in the wizard.

Set-up single sign on

In the overview, press Set up single sign on

Then select SAML as single sign-on method

You will need to provide the Entity ID and Reply URL to continue:

  • Entity Id - This can be the URL to your Pure instance or a name, i.e. https://my-Pure-Instance.uni.edu or pure-uni-prod. 
  • Reply URL - https://<your hostname>/admin/login/saml2/sso/pure

Press Save.

Go to the single sign-on page and you should now see the following

(Some details are intentionally left out)

In (2) in the picture above, you can edit the attributes and claims which are being sent to Pure on a successful login. Remember that at least one of these attributes need to match the username that is used in Pure, this can be an employee number, an email address etc. You can check this by looking up a user in Pure and see what format the username is in. 

In (3) in the picture above, you will find the field App Federation Metadata Url. Copy this and then follow Step 2 in the How to set up SSO in Pure Using SAML2.

Upload SP metadata

After you have configured Pure, you would need to get that data in to your IdP. This can be done by using the Upload metadata file or by entering it manually (not recommended)

You can download Pure's metadata.xml file from https://<your hostname>/admin/saml2/service-provider-metadata/pure 

Press save.

Test single sign-on

In the button of the Single sign-on page, you would see (5) Test single sign-on. 

(Make sure you have added the groups and users needed in the Users and groups section first)

Press the test button and you should now have access to Pure. 

Troubleshooting

If you encounter an error you would need to look at logging in the authentication configuration in Pure. 

Updated at September 19, 2024

Download
Table of Contents
  1. Creation of a new Enterprise Application
  2. Set-up single sign on
  3. Upload SP metadata
  4. Test single sign-on
  5. Troubleshooting
Related Articles
  • Configuring SAML2 (Pure 5.30 and later)
  • How to set up SSO in Pure Using SAML2 (Pure 5.30 and later)
  • Static user authentication (Pre 5.30.0)
Keywords
  • azure ad
  • sso
  • entra id
  • saml

Was this article helpful?

Yes
No
Give feedback about this article

    About Pure

  • Announcements

    Additional Support

  • Events
  • Client Community
  • Training

    Need Help?

  • Contact Us
  • Submit a Support Case
  • My Cases
  • Linkedin
  • Twitter
  • Facebook
  • Youtube
Elsevier logo Relx logo

Copyright © 2024 Elsevier, except certain content provided by third parties.

  • Terms & Conditions Terms & Conditions
  • Privacy policyPrivacy policy
  • AccesibilityAccesibility
  • Cookie SettingsCookie Settings

Knowledge Base Software powered by Helpjuice

Expand