Ignition 8.1 Microsoft Azure Active Directory SAML setup

Has anyone setup MS Azure AD SAML to work with ignition identity provider? I am currently getting an error with the login authentication on the test login option. I am thinking this is something I have not set up on the Azure end of this. But I am lost in terms of figuring out my next steps.

The error I get with when selecting test login on the IdP page:

AADSTS700016: Application with identifier ‘http://localhost:8088’ was not found in the directory ‘XXXXXXXXXXXXXXXXXXXXXX’. This can happen if the application has not been installed by the administrator of the tenant or consented to by any user in the tenant. You may have sent your authentication request to the wrong tenant.

Go into your enterprise app or app reg in Azure Portal and configure the Redirect URIs to the Ignition gateway.

image1284×452 30.5 KB

You will not be able to use “localhost” or http when using an IdP. If you try to sign into the IdP from a URL that is not setup in Azure the request will fail. So you might want to tell Ignition to just force HTTPS on everything to avoid user issues.