Single Sign-On
      Back to home
      1. Help Center
      2. Getting Started
      3. Single Sign-On

      Setup Single Sign-On (SSO) using Azure AD for your Avoma accounts

      Use Avoma's SSO with Azure AD SAML Integration for streamlined access management and unified login experience for your users

      Introduction

      Single sign-on (SSO) is an authentication method that enables users to securely authenticate with multiple applications and websites by using just one set of credentials. SSO works based upon a trust relationship set up between an application, known as the service provider, (in this case Avoma) and an IDP (identity provider), like Okta, Azure AD, Jumpcloud etc.

      This help article documents the process of setting up SSO with Azure AD using the SAML 2.0 protocol for your Avoma account.

      Disclaimer : 
      Please note that after SSO is enabled for your account, users will only be able to log in using SSO. Other authentication methods, such as Log in with Google/Microsoft, will no longer be functional.

       

      Setting up SSO for Avoma with Azure AD SAML is two step process

      1. Create an Enterprise application for Avoma SSO in Azure portal
      2. Provide details to set up Azure AD SAML SSO in Avoma

      Step 1 : Create an Enterprise application for Avoma SSO in Azure Portal

      Prerequisite : You must be an admin in Azure portal and have one of the following roles - Cloud Application Administrator or Application Administrator

      1. Sign In to Azure Portal > Home > Enterprise applications > All applications. Create “New Application
      2. Click on Create your own application.  Give it a unique name such as Avoma SSO and click on Create
      3. Select “Setup Single Sign On” and select “SAML
      4. Fill following fields in the SAML-based Sign On - Basic SAML Configuration
        1. Identifier ( Entity Id) - https://app.avoma.com
        2. Reply URL (Assertion Consumer Service URL) - https://prod-api.avoma.com/saml2/acs
        3. Relay State - https://app.avoma.com
        4. Click SaveScreenshot 2025-03-20 at 11.41.24 PM
      5. Copy the App Federation Metadata Url ,  save it somewhere. This information will be needed to be sent to Avoma team to setup SSO
      6. Copy Microsoft Entra Identifier ,  save it somewhere. This information will be needed to be sent to Avoma team to setup SSO
      7. Now go to the Users and Groups and assign the app to appropriate users

      Step 2: Provide details to set up Azure SAML SSO in Avom

      Currently, Avoma sets up an SSO on your behalf for your organization. Please contact Avoma Support or your Customer Success Manager and provide the following details:

      • App Federation Metadata Url copied in Step 1 - #5
      • Microsoft Entra Identifier set in Step 1 - #6

      Once Avoma has configured SSO for you, you will receive a confirmation. Avoma will also terminate the existing sessions for all your users so that they can freshly log in using SSO. Going forward all the users from your organization will only be able to login via SSO.

       

      Your users can then start using the SSO option on the Avoma login screen to access their accounts.