Skip to content
English
Contact Us
  • There are no suggestions because the search field is empty.

Configuring Single Sign-on for Microsoft (Okta/AuthO)

In this article you will learn to configure Single Sign-on for Microsoft.

Click below for a full screen walkthrough video.
▶️ Configuring Single Sign On for Microsoft


Step 1: Log in to the Microsoft Azure Portal with a Super Admin account at https://portal.azure.com. Then, click View under Manage Microsoft Entra ID.

Image

Step 2: Select Enterprise applications.

Image

Step 3: Choose New application.

Image

Step 4: Click Create your own application.

Image

Step 5: Name the application: CyberNut SSO and click Create.

Step 6: Click on Assign users and groups.

Image

Step 7: Click on None Selected underneath Users.

Step 8: Select the 'CyberNut Admins' group that was previously configured. If the school district's administrator has opted for an alternate group name, they should select the designated group intended to receive administrative dashboard access. 

Note: Role permissions can be subsequently modified within the CyberNut admin dashboard. 

Select the users who will be granted access to the CyberNut Admin Portal, and then click 'Assign' upon completion.

These users will be able to create, schedule, or view results of campaigns depending on their role permissions in the CyberNut Admin Portal.

Step 9: After assigning administrative users, select Single sign-on.

Image

Step 10: Choose SAML.

Image

Step 11: Click on Edit for the first tile that says: Basic SAML Configuration.

Image

Step 12: Add an Identifier and Reply URL and copy the following values:

Replace the slug name with the name of the school. It must match what is entered in CyberNut.

Identifier (Entity ID): urn:auth0:cybernut-prod:slug_name

Reply URL: https://cybernut-prod.us.auth0.com/login/callback?connection=slug_name

Once added, click Save and click on the red X in the top right corner.

Step 13: Next, select Edit next to Attributes & Claims.

Image

Step 14: Click each of the Additional Claims one at at time and delete the namespace and click Save.

Here is an example for the emailaddress claim. Delete the Namespace and click Save. Repeat the process for givenname, name, and surname.

Once you're finished, the additional claims should look like this:

Step 15: Download the Federation Metadata XML and provide it to your Implementation Engineer to upload.