Step 1 - Redirect URI

Go to portal.azure.com, create a new app registration (single tenant), and add the relevant redirect URI (include the trailing slash). Make sure you replace company+com with your email domain.

https://<app|eu|apac>.secoda.co/api/v1/auth/saml/company+com/acs/

For example, if your Secoda url is eu.secoda.co email is brittany@abc.company.co then the redirect URI should be:

https://eu.secoda.co/api/v1/auth/saml/abc+company+co/acs/

Step 2 - Application ID URI

Go to “App Registrations”, click on the app you just created and then click the “Expose an API” tab, and enter a value in the “Application ID URI” field. This should be to the email domain you own. This is only for verification purposes, this url is never called or redirected to.

https://<domain>/secoda

Continuing with the example above, the Application ID URI field should be.

https://abc.company.co/secoda

Step 3 - XML Link

Click “Endpoints” and copy the “Federation metadata document”.

Step 4 - Request in Secoda app

1. Navigate to the Secoda app > Settings > Security > SAML

2. Choose Microsoft as the SAML Provider (IDP)

3. Paste the link from Step 3 under "Metadata URL"

4. Click Request which will alert the Secoda team of your request.

Once Secoda has completed their steps, you will be able to go to navigate to Secoda, click “Sign in with SAML”, and enter your domain to complete sign-in.