Sorry, the InVision Help Center does not support Internet Explorer. Please download Microsoft Edge or another modern browser.

SSO - Configuring Microsoft Azure for use with InVision

This article is specific to Enterprise in InVision Cloud V6. If you're using Enterprise in Cloud V7, read this article instead. Not sure which version you're using? Find out now.

Getting set up to use Microsoft's Azure Active Directory SSO with InVision Cloud V6 involves three primary tasks:

  1. Adding InVision as a new application in Azure
  2. Configuring the InVision application in Azure
  3. Configuring Azure in InVision Cloud V6 (with help from InVision Support)

This article walks you through the process.

Adding InVision as a new application in Azure

To add the InVision app in Azure:

  1. Sign in to Azure as an admin.
  2. In the left-hand navigation, click Azure Active Directory.
  3. Navigate to Enterprise Applications, click All Applications, and click New application.
  4. In the Add from the gallery search box, enter "InVision."
  5. In the search results, click InVision and finish adding the app.

Configuring the InVision app in Azure

To configure and enable the InVision app in Azure:

  1. Open the InVision app and, in the Manage section, click single sign-on.
  2. On the Select a single sign-on method page, click SAML.
  3. To the right of Basic SAML Configuration on the Set up single sign-on with SAML page, click the pen icon and edit the settings.
    For detailed instructions on editing these SAML configuration settings in Azure, check out the "Configure Azure AD SSO" section of Microsoft's related Help article.
  4. In the SAML Signing Certificate section of the Set up single sign-on with SAML page, next to Certificate (Base64), click Download and save the certificate to your desktop (or wherever you can easily find it later).
  5. In the Set up InVision section, copy the URLs next to each of these labels:
    • Login URL
    • Azure AD Identifier
    • Logout URL

Configuring Azure in InVision

Next, contact InVision Support so we can configure Azure for your InVision Cloud V6 Enterprise.

Remember, Support will need these details you saved while adding and configuring the InVision app in Azure:

  • Name: Set any name you want for the configuration.
  • Sign-in URL: Enter the Login URL you saved in step 5 of the "Configuring the InVision app in Azure" instructions above.
  • Sign-out URL: Enter the Logout URL you saved in step 5 of the "Configuring the InVision app in Azure" instructions above.
  • SAML Certification: Enter the certification provided in the ds:X509Certificate attribute of the metadata file.
  • Name ID Format: urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress
  • HASH Algorithm: SHA-256
  • SSO Button Label: Set any text you’d like for the SSO button that appears when signing in.

Was this article helpful?

Still have a question?

Contact Us