Microsoft Azure AD

To configure Microsoft Azure AD (Entra ID) as your Identity Provider (IdP) for the Saras Platform, follow the steps below.

​

1. Create Enterprise Application

1. Sign in to the Microsoft Entra admin center.
2. Navigate to Identity > Applications > Enterprise applications.
3. Click + New application > + Create your own application.
4. Enter a name (e.g., Saras AI or Saras Finance).
5. Select Integrate any other application you don’t find in the gallery (Non-gallery) and click Create.

​

2. Assign Users and Groups

Before testing, you must authorize users to access the application:

1. In the application’s left menu, select Users and groups.
2. Click + Add user/group and select the specific users or groups who need access.

​

3. Configure SAML SSO

In the Single sign-on section of your application, select SAML and provide the following details using your unique Tenant ID provided by Saras.

​

Basic SAML Configuration

Click Edit and enter these values:

• Identifier (Entity ID): https://ind-prod.sarasfinance.com/v1/saml/samlmetadata/<<YOUR_TENANT_ID>>
• Reply URL (ACS URL): https://ind-prod.sarasfinance.com/v1/saml/samlacs/<<YOUR_TENANT_ID>>
• Sign on URL: https://ind-prod.sarasfinance.com/v1/saml/samllogin/<<YOUR_TENANT_ID>>

​

Attributes & Claims

Click Edit to verify the following:

• Unique User Identifier (Name ID): Set this to user.mail or user.userprincipalname.
• Claim Name: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress (Ensure this claim is present and mapped to the user’s primary email).

​

SAML Certificates

Download the Federation Metadata XML or the Certificate (Base64) to share with the Saras team.

​

4. Details to share with Saras

To finalize the integration, please share the following details with the Saras Support team:

• Login URL / SSO URL
• Microsoft Entra Identifier (Issuer ID)
• X.509 Certificate (or the downloaded Metadata XML file)
• Tenant ID (Optional, for reference)