This user guide shows you how to enable IdP Initiated SAML SSO in Azure AD. It demonstrates how to how to setup Azure AD and then send required information to Dubber’s Support team at firstname.lastname@example.org
Azure SSO Setup
To begin SSO setup, access your Azure environment and create their Enterprise Application and select the option to use Single Sign On.
Basic SAML Configuration
Basic SAML Configuration setup requires information for the “Identifier (Entity ID)” and “Reply URL (Assertion Consumer Service URL)”.
These values are based on the region of the connection. Use the values exactly as shown here.
|Region||Identifier (Entity ID)||Reply URL (Assertion Consumer Service URL)|
|AU||https://au.dubber.net||https:// au .dubber.net/saml/auth|
|CA||https://ca.dubber.net||https:// ca .dubber.net/saml/auth|
|JP||https://jp.dubber.net||https:// jp .dubber.net/saml/auth|
|UK1||https://uk1.dubber.net||https:// uk1 .dubber.net/saml/auth|
|SG||https://sg.dubber.net||https:// sg .dubber.net/saml/auth|
User Attributes & Claims
Dubber recommends the use of an Email Address for Account level SSO authentication. In the User Attributes and Claims area, set the “Name identifier format” to Email. Set the “Source attribute” to a value that is in email format, for example “user.mail”.
If your emails are not stored in lowercase, add a transformation rule to convert them to lower case.
SAML Signing Certificate
This completes the Azure AD setup for Dubber.
Dubber SSO Setup
To complete the Dubber setup, send Dubber your Azure AD MetaData url or the MetaData file downloaded from the url. Dubber also needs to know which option you selected for the SAML Response signing option.
Raise a Support Request
To automatically create a support request, email this information to email@example.com and a Dubber Support agent will manage the implementation of SSO for your account. The copy button on the right side of the “App Federation Metadata Url” field it a quick and accurate way to copy the URL.
After Dubber has received the necessary information from the customer, Dubber initiates configuration. When configuration is complete, Dubber advises the customer that the implementation is ready for testing.
When setup is complete, the customer can force the use of SSO for their users. Only account administrators can do this.
Login to the Dubber portal, and select the “Account” menu option.
On the “My Account” screen, go to the “People” tab. Select the “Force SSO All Users” option to force every user to use SSO and disable authentication access in the Dubber portal.
You can use the button on the right of each user in the list to force or unforce individual users.
Customer Access URL
Users with forced SSO set are unable to access the Dubber web portal using the region public url. Instead, they need to login to the customer’s IdP. This is in the application’s properties in the “User access URL” field on their MyApps page. This is an example of the MyApps page users can access at https://myapps.microsoft.com/