Centre d´assistance

Aller sur Filestage
Toutes les collectionsAssistance et DépannageConfiguration, compatibilité et dépannageSetup your SSO via Microsoft Entra ID (formerly Azure Active Directory)

Setup your SSO via Microsoft Entra ID (formerly Azure Active Directory)

Learn how to establish a connection between Entra ID Single-Sign-On and Filestage

info icon
This feature is only available for users on Enterprise plans. Should you have any additional questions, please reach out to our customer support via support@filestage.io or via our chat.

Register the Filestage Platform with Entra ID (former Azure AD).

Registering the Filestage platform as an application establishes a trust relationship between Filestage and the Microsoft identity platform.

And this is how you set up this relationship: 

  1. Sign in to the Entra ID Portal.

  2. If you have access to multiple tenants, in the top menu, use the Directory + subscription filter to select the tenant in which you want to register an application.

  3. Select Entra ID (Azure Active Directory).

  4. Under Manage, select App registrations > New registration.

  5. Enter the Display Name (Filestage) for the application. 

  6. Specify the users for this application.

  7. Don’t enter anything in the redirect URI. We will configure it in the next section.

  8. Select Register to complete the app registration.

  9. When registration is over, the Entra portal displays the application Overview panel/section. Please copy the Client ID* ( required by filestage ) from this panel.

Configure the redirect URI

The redirect URI is the location where your Entra ID (Azure AD) redirects a user and sends security tokens after authenticating. The Filestage servers use this security token to uniquely identify and safely log your users into the Filestage platform. 
Set up the redirect URI as follows:

  1. In the Entra ID Portal, in App registrations, select your application.

  2. Under Manage, select Authentication.

  3. Under Platform configurations, select Add a platform.

  4. Under Configure platforms, select the tile (Web) to configure its settings.

  5. Add https://api.filestage.io/auth/enterprise/callback as the redirect URI and select Configure to save the platform settings.

Setup the client secret

Sometimes the client secret is also called the “application password”. The client secret is a string value the Filestage platform uses to identify itself at your Entra ID (Azure AD).

Let’s set it up: 

  1. In the Entra ID (Azure) portal, in App registrations, select your application.

  2. Select Certificates & secrets > New client secret.

  3. Add a description to the client secret.

  4. Select an expiration for the secret or specify a custom lifetime (a 1 year lifetime is recommended).

  5. Select Add.

  6. Record the secret’s value* (required by Filestage). This secret value will be permanently hidden once you leave this page.

info icon
The client secret is a value that needs to be updated once its lifetime has expired, otherwise the SSO will stop working for your team members.
We therefore recommend planning ahead and reaching out to our customer support (support@filestage.io) with a new client secret a week before the active secret expires.

Provide us with the technical details

Time for us to do our homework and set everything up on our side. To configure your SSO instance, we need the following details from your Entra ID directory:

  1. Client ID generated in 9th step of Register app in Entra ID.

  2. Client Secret generated in 6th step of Create client secret.

  3. Entra ID domain name (eg: example.onmicrosoft.com) found on the overview page of Entra ID.

error icon
To ensure compliance with security standards, please provide this information securely and via an encrypted channel to your dedicated Customer Success Manager or our support team (support@filestage.io).

And that's it - your users can now access Filestage through your SSO!

Cette réponse vous a-t-elle aidé ?
😞
😐
😁
Go to Filestage