Atrixware
Free Demo
1.866.696.8709

Integrating Azure AD SSO with Axis LMS

If you use Azure AD as your SAML identity provider (IdP), you can use the information in this document to set up SAML authentication for your Axis LMS.

These steps assume that you have permissions for modifying your organization’s Azure AD portal.
    Note: These steps reflect a third-party application and are subject to change without our knowledge. However, even if the steps described here do not fully match the screens you see in your IdP account, using these steps along with the IdP’s documentation should still enable you to configure the integration.

Step One: Begin Adding The Integration In Axis LMS
  1. While signed in to Axis LMS as an administrator, go to System > Integration > Single Sign-On (SSO) > SAML Sign-In
  2. Click the + Add An Integration button.
  3. Select Azure AD from the list of SAML Identity provider.
  4. Keep this screen/tab open for now as we will refer to it later.

    Figure 1: Add A New Integration Screen in Axis LMS


Step Two: Adding Axis LMS To Your Azure AD Applications
  1. In a new tab/window, access Azure AD.
  2. Go to Enterprise Applications > New Application.
  3. Search for Azure AD SAML Toolkit
  4. Select the Azure AD SAML Toolkit app
  5. Edit the Name, entering Axis LMS.
  6. Click Create.
  7. You'll be automatically forwarded to the manage application screen for your new application. Leave this open for now as you'll refer to it later.

    Figure 2: Azure AD > Find Applications

Step Three: Add Identity Provider Details To Axis LMS

In this step, you'll provide Axis LMS with the SAML Identity provider values it needs to communicate with Azure AD.

  1. the Azure AD manage app UI, select the Single Sign-On tab.
  2. Click the option for SAML.
  3. On the SAML Setup screen, scroll down to the fourth section, titled Setup App Name.
  4. Copy values from Azure AD and paste them into the Identity Provider Details section of Axis LMS, as shown below.

    Copy Azure AD Field Value to Axis LMS Field Value
    Azure AD Identifier to Entity ID / Issuer URL
    Login URL to SAML 2.0 Endpoint / SSO URL
    Logout URL to SLO Endpoint / Logout URL
    SAML Signing Certificate > Certificate (Base64) > Download (& open in text editor) to X.509 Certificate

After copying values from the SSO tab into the Identity Provider Details section of Axis LMS, it should look something like this:

    Figure 3: Axis LMS Identity Provider Details

Step Four: Add Service Provider Details To Azure AD

In this step, we’ll define the service provider values that Azure AD will need to identify your app.
  1. On the Add A New Integration screen in Axis LMS, go to the Service Provider Details section.
  2. In the Azure AD SAML setup UI, scroll up to the Basic SAML Configuration section and click Edit.
  3. Copy values from Axis LMS into the Azure AD fields as shown below.
  4. Click Save.


    Copy Axis LMS Field Value to Azure AD Field
    Entity ID to Identifier (Entity ID)
    Assertion Consumer Service / SSO Service to Reply URL (Assertion Consumer Service URL)
    Assertion Consumer Service / SSO Service to Sign On URL (* remove '/acs' from the end of this URL)
    Single Logout Service to Logout URL

Step Five: Defining User Attributes

In this step, we’ll define the information about the user (id, email address, first name, last name) that need to be passed to Axis LMS.
  1. In the Azure AD SAML setup UI, scroll up to the User Attributes & Claims section and click Edit.
  2. Click the Add a New Claim link in the upper left corner of the parameter listing.
  3. Under Name enter "uuid" (without quotations).
  4. Under Source Attribute, select user.userprincipalname and then click Save
  5. Repeat this sequence three more times, using the fields/values below
    Field to Value
    emailAddress to user.mail
    firstName to user.givenname
    lastName to user.surname
    Note: Even though Azure AD may provide additional user data that can be passed as parameters, only the paramters listed above are compatible with Axis LMS; all other values will be ignored.

Step Six: Finishing Up & Testing


At this point you've completed all the necessary steps to configure the Axis LMS application in Azure AD.

In Axis LMS, on the Add A New Integration screen, finish configuring the User Login settings and then click Save to save the integration in Axis LMS.

To test your new integration, you'll need to give users access to your new application in Azure AD before using the newly generated Axis LMS login link for this integration. For more information on granting users access to your application via Azure AD, please refer to the IdP's documentation.
The features discussed in this article may or may not be available on your LMS system.
Comments
There are no comments for this article. Be the first to post a comment.
Related Articles RSS Feed
Axis LMS Calendar Entries
Viewed 3427 times since Wed, Mar 6, 2013
Printable Certificates in Axis LMS
Viewed 7193 times since Wed, Jul 17, 2013
Integrating OneLogin SSO with Axis LMS
Viewed 78 times since Wed, Sep 1, 2021
New Website Options in Axis LMS
Viewed 389 times since Mon, Dec 7, 2020
Axis LMS Website Designer
Viewed 7818 times since Fri, May 10, 2013
Building a Resource Library in your LMS
Viewed 4492 times since Thu, Oct 15, 2015
Axis LMS - Using Notebooks
Viewed 3098 times since Wed, Apr 24, 2013
508 Compatibility in Axis LMS
Viewed 4292 times since Wed, Apr 3, 2013
Collecting Profile Information in Axis LMS
Viewed 4145 times since Fri, Mar 24, 2017
Integrating Salesforce SSO with Axis LMS
Viewed 123 times since Thu, Sep 2, 2021