> ## Documentation Index > Fetch the complete documentation index at: https://docs.getstrada.com/llms.txt > Use this file to discover all available pages before exploring further. # SSO with Microsoft Entra > Configure Single Sign-On using Microsoft Entra ID (formerly Azure AD) for seamless authentication **Contact Strada Administrator Required** To set up SSO with Microsoft Entra, please contact your Strada administrator. Our team will provide you with the necessary SAML configuration URLs. After you complete the Microsoft Entra configuration steps below, you'll need to send us your metadata URL in the format specified in this guide. ## Overview Strada supports Single Sign-On (SSO) through Microsoft Entra ID (formerly Azure Active Directory), allowing your organization to manage user access centrally through your Microsoft identity provider. This enables secure and streamlined authentication for your team members. *** ## Prerequisites Before configuring SSO, ensure you have: * Admin access to Microsoft Entra Admin Center * Contact with your Strada administrator * The SAML configuration URLs provided by Strada *** ## Step 1: Receive Configuration from Strada Contact your Strada administrator to receive: 1. **ACS URL** (Assertion Consumer Service URL) 2. **Audience URI** (Entity ID) Keep these URLs handy for the next step. *** ## Step 2: Configure Strada Application in Microsoft Entra ### Create Enterprise Application 1. Log in to **Microsoft Entra Admin Center** 2. Navigate to **Enterprise applications** 3. Click **New application** 4. Click **Create your own application** at the top ### Application Details 1. **Name**: Enter "Strada" 2. Select **Integrate any other application you don't find in the gallery (Non-gallery)** 3. Click **Create** ### Configure Single Sign-On 1. Once your application is created, navigate to **Single sign-on** in the left sidebar 2. Select **SAML** as the single sign-on method ### Basic SAML Configuration Click **Edit** on the **Basic SAML Configuration** section: **Identifier (Entity ID):** ``` [URL provided by Strada administrator] ``` **Reply URL (Assertion Consumer Service URL):** ``` [URL provided by Strada administrator] ``` Basic SAML Configuration Leave the other fields blank and click **Save**. ### Configure Attributes & Claims Click **Edit** on the **Attributes & Claims** section: #### Update Name ID 1. Click on **Unique User Identifier (Name ID)** under **Required claim** 2. Change **Source attribute** to `user.primaryauthoritativeemail` 3. Click **Save** #### Configure Additional Claims Under **Additional claims**, delete any preconfigured options and create the following three claims: | Claim Name | Source Attribute | | ---------- | ---------------- | | firstName | user.givenname | | lastName | user.surname | | id | user.objectid | Additional Claims Configuration Click **Save** after adding all claims. *** ## Step 3: Provide Metadata to Strada ### Obtain Microsoft Entra Metadata URL 1. In your Strada application, scroll to the **SAML Certificates** section 2. Locate the **App Federation Metadata Url** 3. Copy this URL (it should look like: `https://login.microsoftonline.com/.../federationmetadata/...`) App Federation Metadata URL ### Send to Strada Share the metadata URL with your Strada administrator along with your organization name. Strada will complete the SSO configuration on their end and notify you when it's ready for testing. *** ## Step 4: Assign Users ### Add Users to Application 1. In your Strada application, navigate to **Users and groups** in the left sidebar 2. Click **Add user/group** 3. Select the users or groups who should have access to Strada 4. Click **Assign** *** ## Step 5: Test SSO Connection Once Strada confirms the configuration is complete: 1. Navigate to your Strada login page 2. Click **Sign in with SSO** 3. You should be redirected to Microsoft for authentication 4. After successful authentication, you'll be redirected back to Strada If you encounter any issues during login, contact your Strada administrator.