Microsoft Azure integration with SpotlerCRM allows you to set up Single Sign-on (SSO) for your users. This page explains how to configure the integration, what it enables, and important considerations for managing it. You can find the Azure integration setup in the Settings tab of SpotlerCRM, under Integrations.
On this page you have the following options:
Overview Azure integration
Azure is a set of cloud services provided by Microsoft to help organizations manage various business challenges. It enables the development, management, and deployment of applications on a robust cloud network using a variety of tools and frameworks.
Important
After SSO is enabled, users can only log in to SpotlerCRM via the Azure portal.
Set up Azure integration
To help you set up Azure integration, follow these steps:
- Step 1 - Create an Azure application
- Step 2 - Configure Single Sign-on
- Step 3 - Add claims and upload the certificate
- Step 4 - Validate and enable the integration
Step 1 - Create an Azure application
Log in to the Azure Portal. On the left-hand menu, click on Azure Active Directory, and then select Enterprise applications.
In the Enterprise applications overview, click + New application.
In the Browse Azure AD Gallery section, select the Create your own application option.
Enter "SpotlerCRM" as the application name and ensure you select the option for Integrate any other application you don’t find in the gallery (Non-gallery).
Step 2 - Configure Single Sign-on
In the new application menu, click Single Sign-on and select "SAML" as the sign-in method. You will now see a five-stage process.
For Stage 1, complete the Identifier (Entity ID) and Reply URL (Assertion Consumer Service URL).
These values are found in SpotlerCRM under Settings → Integrations → Single Sign-on, by clicking SETUP for Azure.
Copy the URLs from the blue alert box in SpotlerCRM to their corresponding fields in Azure. Save your changes.
Step 3 - Add claims and upload the certificate
In Stage 2, add a claim by clicking Add claim.
Complete the Manage Claim form with the required information and save it.
Return to SpotlerCRM and complete the additional fields with values from Stage 4 in Azure. Download the Base64 certificate from Stage 3 in Azure, and upload it in SpotlerCRM.
Step 4 - Validate and enable the integration
Review the two URLs displayed in SpotlerCRM (from Stage 1 in Azure). If everything is correct, click Done in SpotlerCRM. In Azure, go to Stage 5 and click Test to validate the integration.
If the test is successful, your SpotlerCRM Microsoft Azure integration is now enabled. From this point, all logins to SpotlerCRM must go through Azure.
Disabling Azure
To disable Azure integration, go to Settings → Integrations in SpotlerCRM. Open Single Sign-on and click the red Disable button. This will revert all logins to the standard SpotlerCRM login page.
Notes
- The email address used in Azure must match the email address in SpotlerCRM to avoid login errors.
- If users attempt to log in via the SpotlerCRM standard login page, they will be redirected to Azure.
- Add users to the Users and groups section of your Azure SpotlerCRM Application to grant them access.
- Azure Base64 certificates expire after two years. Set a renewal reminder.
- You can find your SpotlerCRM app in Azure at myapps.microsoft.com.
- For Azure-specific issues, contact the Azure Support Team.