1. Censys
  2. Censys Search
  3. Censys Account Management

Other Articles In This Section

In this article:

Set Up Azure for Censys SAML Authentication

  • Updated

Follow this guide to enable SSO with Azure Active Directory as your Identity Provider for Censys authentication.

This is one part of a two-part process to configure SAML-based authentication for people on your Censys team.

In order to successfully complete this setup, you must have the "Use SAML" checkbox selected on the Censys Team Authentication page. Information necessary to this setup guide is present in the SP Details section.

Add Censys as an SSO-enabled application

  1. Log into Azure Active Directory and select the Azure Active Directory service.

    azure 2 active directory

  2. On the left-hand navigation, select Enterprise Applications.

    azure 3 enterprise applications

  3. In the menu bar near the top of the page, select New Application.

    azure 4 applications new

applications_new.png[]

  1. Again in the menu bar near the top of the page, select Create your own application.

    azure 5 applications create

  2. In the modal that pops up, name the app Censys.

    For the app purpose, select the radio button that says, Integrate another application not found in the gallery (Non-gallery)

    azure 6 create step 1 name

    Click the Save button.

  3. From the Overview page, underneath the "Getting Started" section, click the Set up single sign on card.

    azure 7 create step 1 sso

  4. On the next page, choose SAML for the single sign-on method.

    azure 9 saml

  5. On the SAML Setup page, provide information about the Censys application:

    • For the Identifier field, copy the Entity ID URL from the SP Details section of the Censys Authentication page.

    • For the Reply URL field, paste the Assertion Consumer Service URL from the SP Details section of the Censys Authentication page.

    • Leave the "Sign Authentication Requests" checkbox selected.

      azure 12 saml setup

      Click the Save button.

  6. In the Attribute & Claims section, double-check that the following claims are present:

    1. Required Claim:

      • Name: nameidentifier

        Name identifier format: Email Address

        Source: Attribute

        Source attribute: user.userprincipalname

    2. Additional Claims:

      • Name: givenname

        Namespace: http://schemas.xmlsoap.org/ws/2005/05/identity/claims

        Source: Attribute

        Source attribute: user.givenname

      • Name: surname

        Namespace: http://schemas.xmlsoap.org/ws/2005/05/identity/claims

        Source: Attribute

        Source attribute: user.surname

        azure 13 attributes claims

        Click Save.

Assign Users

  1. From the Overview page, click the Assign users and groups card.

    azure 8 assign users and groups

  2. Select the people or groups who should have access to Censys.

Up Next

With Azure configured to authenticate Censys users, it’s time to configure Censys for SAML authentication.

Copy the App Federation Metadata URL on the "SAML Signing Certificate" card in the Single Sign On settings of your newly configured enterprise application for one-click setup on the Censys side.

azure 14 sso metadata url location

Related articles

Comments

0 comments

Please sign in to leave a comment.