Embedded Files
A. Add Microsoft 365 (SSO) Application in Zaperon
A.1. In the Admin Dashboard, click Application >Add Application.
A.2. Click on Microsoft 365 from application catalog.
A.3. Enter details in SAML Settings and click Submit.
A.4. A Single Sign-on Configuration popup will appear. Copy Sign-in URL, Sign-out URL and download certificate.
A.5. You’ll see Microsoft 365 app has been added to application table.
B. Configure admin console of Microsoft 365
Run following commands in PowerShell in the sequence given below:
B.1. Install-Module MSOnline
B.2. Install-Module AzureAD
B.3. Import-Module AzureAD
B.4. Connect-MsolService
This will prompt to login. Enter your Microsoft administrator email and password.
B.5. In the below command, replace <domain name> with your domain. Example: If your email is
john.doe@company.com then domain name is company.com.
In MyURI, replace <domain> with domain name. Example: If your email is john.doe@company.com then domain is company.
In MySigningCert, replace <certificate> with certificate that you can get from Zaperon SSO settings.
$dom = "<domain name>"
$BrandName = "<domain name>"
$LogOnUrl = "https://api.zaperon.com:8443/sso-redirect/office365"
$LogOffUrl = "https://api.zaperon.com:8443/sso-redirect/office365"
$ecpUrl = "https://api.zaperon.com:8443/sso-redirect/office365"
$MyURI = "https://<domain>.zaperon.com/"
$MySigningCert = "<certificate>"
$Protocol = "SAMLP"
Set-MsolDomainAuthentication `
-DomainName $dom `
-FederationBrandName $BrandName `
-Authentication Federated `
-PassiveLogOnUri $LogOnUrl `
-ActiveLogOnUri $ecpUrl `
-SigningCertificate $MySigningCert `
-IssuerUri $MyURI `
-LogOffUri $LogOffUrl `
-PreferredAuthenticationProtocol $Protocol
B.6. Run below command to add ImmutableID for existing users
Get-MsolUser -All | ForEach-Object {
$user = $_ # Store user object in a variable
Set-MsolUser -UserPrincipalName $user.UserPrincipalName -ImmutableID $user.UserPrincipalName
}
Google Sites
Report abuse