Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

When all requirements have been met, you're now able to enable AAD login for the Digizuite. 


Digizuite Configuration

To configure AAD on the Digizuite side, open Media Manager and go into Settings => SSO

Once that page loads, select "WsFederation in the dropdown"

Configure a template member if required. If not configured for the SSO integration specifically, the general template member for the Digizuite will be used. 

Configure "Group sync level". Check the tooltips in MM for specifications about what the individual levels does. 

Next give the configuration a "name". This name is arbitrary and does not matter for usage, it's just for internal reference. 

Next provide the "Metadata address" for the ADFS server. It probably looks something like "https://

my-adfs

login.

server

microsoftonline.com/

FederationMetadata

6e80d0d2-c049-4101-ad8d-8fd678b61299/federationmetadata/2007-06/

FederationMetadata

federationmetadata.xml"

Next provide the "App ID".

In ADFS on AD it's the url of the LoginService, which by default is "{damurl}/DigizuiteCore/LoginService". It's the same url that was configured in the ADFS server.

It probably looks something like "api://0619b1d1-f2b9-4a72-8052-8772847f870f" 

Next press "save". 

Last press "activate". Once the page changes to say "Latest is active", then AAD should be good to go. 

Table of Contents