Configuring Azure AD SAML2.0

Overview

FilesAnywhere supports SAML 2.0 SSO integration for various identity providers. For SSO integration with FilesAnywhere and SAML 2.0, the AzureAD Administrator needs to configure the FilesAnywhere application as a Trusted application as per the following steps.  

Also you will need to request FilesAnywhere to enable the single sign-on functionality.

Things to note:

• Replace <<CLIENTID>> with your Client ID, I.E. 1324
• Replace <<WEBURL>> with your Site URL, I.E. https://private.filesanywhere.com
• Replace any instance below of 2331 with your Client ID, I.E. 1324

AzureAD Setup

1. Login to your Azure Portal administration account.

2. In the Azure Portal, navigate to Active Active Directory.
   
   
   

3. Click on Enterprise Applications:
   
    

4. Create New application:
   
    
   

5. Create your own Application:
   
   

6. Choose Intergrate any other application you don’t find in the gallery and click Create
   
   

7. Choose Set up single sign on:
   
   
   

8. Choose SAML
   
   
   

9. Choose Basic SAML Configuration and click on Edit
   
   
   

10. Keep Entity ID as below and ACS URL as per your user site URL with ClientID, click Save

    Field Name	Field Value
    Reply URL / Assertion Consumer Service (ACS)	<<WEBURL>>saml20.aspx?c=<<CLIENTID>>
    Identifier / Entity ID	Filesanywhere.com
    ClientID	<<CLIENTID>>

    
    
    

     

11.  Step-1 will get updated as below:
    
    
    

12. Edit Attributes and Claims section:
    
    
    

13. Add clientID claim, Click Add new Claim -> Input value as below and Save:
    
    
    

14. Edit all attributes (EmailAddress/FirstName/LastName/UserPrincipalname) as per below steps:

    1. Update name

    2. Remove Namespace value
       
       
       
       
        

15. Finally all attribute claims will look as below and ClientID should be replaced with your account ClientID:
    
    
    

16. Collect and pass on to FilesAnywhere team to update and enable SSO for your account:
    Certificate (Base64)
    Login URL
    
    
    

17. Assign Users(s) to newly added application:

    
    
    
18. In this step you will need to request FilesAnywhere to turn on Single Sign-on for your account and click here to submit it: 
    1. Information collected in above steps:
       1. Initiate Single Sign On (SSO) URL
       2. Download Certificate
    2. If you can provide us with a few test accounts we could test the setup for you.

Login page

Once the Integration is enabled by FilesAnywhere, you will see the SSO button on your login page. Using Use Company Credentials button users can enter their Microsoft Azure AD credential to login into FilesAnywhere.

Still Have Questions?

If you need help or have additional questions, please contact us.