Set up SAML authentication with Azure

These instructions outline the steps that your Azure administrator must take to create, activate, and assign users to access Clearbit apps through SAML authentication.

Before you begin: Initiating and completing the SAML authentication setup requires collaboration with a Clearbit Implementation Manager. Contact our team for assistance.

Create a custom SAML 2.0 app in Azure

Clearbit integrates with Azure through a custom SAML app setup, and is not available in Azure's integration library.

  • To create the custom SAML app navigate to the Azure Portal and go to Azure Services > Enterprise applications. By default you should land on the Manage Applications sub-menu, click the + New Application button

Screen

  • Click the + Create your own Application button, provide a name for the app (e.g. Clearbit) and select the Integrate any other application you don't find in the gallery option and click create
  • Provide a name for the app (e.g. Clearbit). Optionally, add a description and icon (we
    recommend this icon), and click Next.
  • From there you should be redirected to the Overview page for your app. Navigate to the Single sign-on item under the Manage menu and select the SAML option for your single sign-on method.

Screen

  1. Fill out the Basic SAML Configurations with the following information:
    1. Identifier (Entity ID): a unique URL will be provided by our team.
    2. Reply URL (Assertion Consumer Service URL): a unique URL will be provided by our team.
  2. Configure Attributes & Claims with the following: 
    1. Unique User Identifier (Name Id) - Should be configured correctly by defaultScreen
    2. firstName Screen
    3. lastNameScreen
  3. Create SAML CertificateScreen

Assign users or groups to the custom SAML 2.0 app

To identify all of the users who currently have access to your Clearbit account, navigate to Teams > Users in the Clearbit dashboard.

Assign individual users/groups

Find instructions to assign users/groups to an azure app here.

Share your SAML app details with the Clearbit team

To complete the implementation, you will need to share important SAML app details with the Clearbit team. After you have created your custom SAML application, follow these instructions to access and share the required information:

  1. Click the View SAML setup instructions button in the SAML setup section of your app.
  2. Copy and share the following configuration information with the Clearbit team: 
    1. Login URL (Identity Provider SSO URL in Clearbit)
    2. Azure AD Identifier (Identity Provider Issuer)
    3. X.509 Certificate
      1. Can be found by navigating to your App Federation Metadata URL (found with SAML certificate configs) in your browser should be visible between <X509Certificate> tags in rendered XMLScreen
    1.  

Enable SAML authentication

SAML authentication must be enabled by a Clearbit employee using the information you shared in the previous step.

Once you have successfully created the SAML app, assigned users, shared your app details with the Clearbit team, and are ready to enable SAML authentication, contact us and we will complete the setup process!

If you would like to coordinate the enablement and testing of your app, our team is happy to arrange a call to complete the setup together and answer any questions you may have.

Learn More