Guides

Getting Started with ALTR & Snowflake

Configure ALTR's Snowflake Service User

Connect Snowflake Databases

Connect Columns to ALTR

Creating Policy & Manage Data

Features

Classification

Analytics

Column Access Policies

Views

Thresholds

Row Access Policy

Audit Logs

Settings

Tokenization

Tag-Based Data Masking

Advanced

Tokenization API

Management API

ALTR Driver JDBC Installation

ALTR Driver ODBC Installation

Configure Tableau to Gain User Level Observability

Integrating ALTR Notifications with AWS S3

TDS Proxy Installation

CDM Installation

Custom Masking and Extensibility Functions

Bring Your Own Key for Tokenization

Open-Source Integrations

Guides
Features
Advanced
Documentation
/
Guides
/
/
Configuring SSO for Azure Active Directory (AD)

Configuring SSO for Azure Active Directory

This guide will walk you through the steps to configure SSO between your Identity Service Provider, Azure Active Directory (AD) and ALTR. It is written for someone with Super Administrator privileges to follow.

Prerequisites

The following prerequisites must be met to configure SSO for Azure Active Directory (AD):

  • Your organization must be on our Enterprise Plus tier plan
  • You must have Super Administrator privileges
  • You must have Administrator access to your IdP account

Configuration Steps

Follow the steps below to configure SSO between Azure AD and ALTR.

  1. From your Azure portal, choose Azure Active Directory (Figure 1) and then choose Enterprise Applications from the navigation bar on the left (Figure 2).
  2. Create a new Azure Active Directory Enterprise Application to connect with ALTR by clicking the New Application button shown in figure 3.
  3. Click Create your own application (Figure 4). In the panel that appears, name it appropriately and choose the "Non-gallery" application option (Figure 5).
  4. Once the Enterprise Application is created, navigate to its Overview page if you are not already there. From there, choose Set up Single Sign-On or click "Single Sign-On" from the navigation bar on the left (Figure 6).
  5. Choose SAML from your list of Single Sign-On options shown in figure 7.
  6. From the ALTR UI SSO Configuration Page, click the Download button underneath the ALTR SP Metadata File URL. See figure 11.
  7. Once the file is downloaded, go back to Azure and click Upload metadata file (Figure 9). Choose the file you just downloaded and click Add (Figure 10). This automatically imports all the required information from the ALTR SP Metadata File to Azure. No changes are necessary and you can click Save.
  8. (Optional but recommended) Assign your users and groups as desired to this new application so they can access the ALTR UI.
  9. From your Azure Enterprise Application Single Sign-On Settings page, scroll down to the SAML Certificates section. Click the Copy icon on the App Federation Metadata URL field to copy your IDP Metadata URL (Figure 12). Paste this into the ALTR UI SSO Configuration Page field and choose the Azure radio option.
  10. Click Enable on the ALTR SSO Configuration Page.
Figure 1. Azure Active Directory
Figure 2. Enterprise Applications tab
Figure 3. New Application tab
Figure 4. Create your own application tab
Figure 5. Non-gallery
Figure 6. Set up Single Sign-On
Figure 7. SAML
Figure 9. Update metadata file
Figure 10.Add tab
Figure 11. Settings page in the ALTR UI
Figure 12. Copy icon

Frequently Asked Questions

Question: Now that I've enabled SSO why can't my users log in?

Answer: We will do matching on the username field and there's a requirement that users have an identity with a matching username on both sides (ALTR and their Identity Provider).

First section of content

Complete Cloud Data Control and Security

Guide

Features

Advanced

Release Notes

Support

support@altr.com
Copyright © 2023 ALTR Solutions, Inc.,
Privacy Policy
|
Terms of Service
|
SLA
ALTR.com uses cookies to ensure you the best experience on our website. View our privacy policy for more information.
Got It