SSO using Azure Active Directory

To configure SSO integration between Sunwave and Azure AD, customers will create a new Enterprise Application in Azure AD. All users are created/managed by the customer in Azure AD, Sunwave only needs the user's email.

After Enterprise Application is configured, the client will provide the following data to Sunwave:

• Enterprise Application Name

• Enterprise Application ID

• Thumbprint

• Tenant ID

Create a New Enterprise Application in Azure HD

• In Microsoft Azure, the customer will click the New Application link:

  Open

  

   

• Browse Azure AD Gallery, click on Create your Own Application link:

  Open

  

   

• On the Create your own application screen, enter the application name and keep the default option “Integrate any...” then click on Create:

   

• On the Overview screen, click on the Getting Started link under Set up single sign on:

   

• Select the SAML option for the single sign-on method:

   

• Edit the Basic SAML Configuration and enter the following values:

  • Identifier (Entity ID): https://emr.sunwavehealth.com

  • Log In URL: Provided by Sunwave, will be something like https://domain/sso/login/company_name

  • Reply URL (Assertion Consumer Service URL): Provided by Sunwave, will be something like https://domain/sso/callback/company_name

     

Providing Required Information to Sunwave

• Have the client login to Azure AD and go to the Properties page for the Enterprise Application created in the prior steps:

  
  
  

  • Provide Sunwave Product team with the following information:

    • Name

    • Application ID

• Go to the Single sign-on section (left menu), provide Sunwave Product team with:

  • Thumbprint

• Go to the Tenant Information section, provide Sunwave Product team with:

  • Tenant ID

Additional Resources:

• Understand SAML-based single sign-on (SSO) for apps in Azure Active Directory