Kendis.io

This guide explains how to integrate Microsoft Entra ID (Azure AD) with Kendis using SAML-based Single Sign-On (SSO). 

The Kendis Integration app is available on the Azure Marketplace for Microsoft Entra ID (formerly Azure AD).

___________________________________________________________

Go to <a href="https://portal.azure.com/" rel="nofollow noopener noreferrer" target="_blank">https://portal.azure.com/</a> and select "Entra ID" from Azure Services.

Step 2: Navigate to Enterprise Applications

From the left-hand menu, select "<b>Enterprise applications</b>."

Search for "Kendis" in the application gallery. Once it appears in the results, click "Create."

After creating the app, click on "Set up single sign on."

You must be a Super Admin in Kendis to access the SAML configuration.

Go to Admin Settings in your Kendis account.

Copy the "Reply URL (Assertion Consumer Service URL)."

- Go to Admin Settings in your Kendis account.
- Select "SAML Configuration."
- Copy the "Reply URL (Assertion Consumer Service URL)."

Step 7: Configure Basic SAML Settings in Azure AD 

Continue the setup process by editing "Basic SAML Configuration"

Entity ID: Can be any custom value (e.g., kendis-sso).

Reply URL: Use the URL copied from Kendis in Step 6.

Other fields can be left empty or as-is. 

- Entity ID: Can be any custom value (e.g., kendis-sso).
- Reply URL: Use the URL copied from Kendis in Step 6.
- Other fields can be left empty or as-is. 

Azure AD will populate required attributes and claims by default, but Group Claims must be added manually.

In "Groups Claim Selection," select "Groups assigned to the application."

This is recommended to avoid issues when there are more than 150 groups.

Ensure the appropriate groups are assigned to the Kendis application.

- Add a Group Claim.
- In "Groups Claim Selection," select "Groups assigned to the application."
- This is recommended to avoid issues when there are more than 150 groups.
- Ensure the appropriate groups are assigned to the Kendis application.

Step 9: Add Login URL and Certificate to Kendis

Copy the Login URL from Azure AD and paste it into the "Login URL" field in Kendis.

Download the certificate in Base64 format.

Open the certificate in a text editor and copy only the text between BEGIN CERTIFICATE and END CERTIFICATE. 

- Copy the Login URL from Azure AD and paste it into the "Login URL" field in Kendis.
- Download the certificate in Base64 format.
- Open the certificate in a text editor and copy only the text between BEGIN CERTIFICATE and END CERTIFICATE. 

- Only copy the text between BEGIN CERTIFICATE and END CERTIFICATE <br>​
  
   

- Copy the certificate
  - Only copy the text between BEGIN CERTIFICATE and END CERTIFICATE <br>​
    
     

Assign users or groups to the Kendis application in Azure AD. Users will not be able to log in unless they are assigned.

- Go to your Kendis instance URL.
- Click on "Login with Corporate Account."
- Log in using your Azure AD credentials.

For assistance, contact our Live Chat Support or email us at <a href="mailto:support@kendis.io" rel="nofollow noopener noreferrer" target="_blank">support@kendis.io</a>

<a href="https://docs.microsoft.com/en-us/azure/active-directory/saas-apps/kendis-scaling-agile-platform-tutorial" rel="nofollow noopener noreferrer" target="_blank">Step by Step Tutorial for Kendis and Azure AD Integration</a>

<a href="https://azuremarketplace.microsoft.com/en-us/marketplace/apps/aad.kendisscalingagileplatform?tab=Overview" rel="nofollow noopener noreferrer" target="_blank">Kendis Azure AD Integration app at Azure Market Place</a>

- <a href="https://docs.microsoft.com/en-us/azure/active-directory/saas-apps/kendis-scaling-agile-platform-tutorial" rel="nofollow noopener noreferrer" target="_blank">Step by Step Tutorial for Kendis and Azure AD Integration</a>
- <a href="https://azuremarketplace.microsoft.com/en-us/marketplace/apps/aad.kendisscalingagileplatform?tab=Overview" rel="nofollow noopener noreferrer" target="_blank">Kendis Azure AD Integration app at Azure Market Place</a>

Step by step guide to integration Microsoft Entra ID  (Azure AD) with SAML