Configure Riverside with Microsoft Azure SSO (Entra ID)

« To Business Account SSO configuration: Overview

Riverside for Business accounts can set up SSO (Single-Sign On) authentication with Azure Active Directory, also known as Microsoft Entra ID.

Reach out to your account CSM to get started, then follow the steps below.

Step by step

  1. Ask your CSM for custom SSO. Be sure to share which SSO provider you use.
  2. Once your CSM confirms, you can connect set-up the SSO, using a computer, log into your Riverside account.
  3. In the bottom left corner, click the account menu button.
  4. Click settings.svgSettings.
  5. Under Teams, click SSO.
  6. Under Choose an identity provider, select Azure.
  7. Log into the Azure/Entra admin center.
  8. In the menu on the left, click Applications.
  9. Choose Enterprise applications.
  10. At the top of the All applications list, click New application.
  11. At the top of the Browse Microsoft Entra ID Gallery page, click plus.svgCreate your own application
  12. In the Create your own application panel on the right, enter the name Riverside.
    Configure Riverside with Microsoft Azure SSO (Entra ID).gif
  13. Under it, choose Integrate any other application you don’t find in the gallery (Non-gallery).
  14. Click Create. 
  15. On the Riverside | Overview page, under Getting started, click 2. Set up single sign on.
  16. Under Select a single sign-on method, click SAML-puzzle.svg SAML.
  17. Next to Basic SAML Configuration, click edit-pencil_script-editor.svgEdit.
    azure-03.png
  18. On the Riverside SSO set-up page, under Identifier (Entity ID), copy the text.
  19. On Azure, on the right, under Basic SAML Configuration, click Add identifier.
  20. Paste the Identifier (Entity ID).
  21. On the Riverside SSO set-up page, under Reply URL, copy the text.
  22. On Azure, under Reply URL, click Add replyURL.
  23. Paste the Reply URL.

  24. Click save.svgSave.

    SSO-example.png

  25. Close the Basic SAML Configuration section.
  26. Next to Attributes & Claims, click edit-pencil_script-editor.svgEdit.
    azure-05.png
  27. Under Required claim, click Unique User Identifier (Name ID).
    azure-06.png 
  28. Under Manage claim, check that Name identifier format is Email address.
  29. Next to Source, choose Attribute.
  30. On the Source attribute menu, choose user.mail.
  31. Click save.svgSave to go back to Attributes & Claims.
    azure-07.png
  32. Click plus.svgAdd new claim.
    azure-08.png
  33. Under Manage claim, next to Name, type email. You must enter this in lowercase letters.
  34. Next to Source, choose Attribute.
  35. On the Source attribute menu, choose user.mail.
  36. Click save.svgSave to go back to Attributes & Claims.
  37. Close Attributes and & Claims.
    azure-09.png
  38. Scroll down to SAML Certificates and click edit-pencil_script-editor.svgEdit
  39. Next to Expiration add a valid (not expired) date. As a best practice, the expiration date should be set to the end of your Riverside contract term to avoid interruptions.
  40. In the SAML Signing Certificate panel, click the menu next to Signing Option.
  41. Select Sign SAML response and assertion and click save.svgSave.
    azure-10.png
  42. Under SAML Certificates, next to Federation Metadata XML, click Download.
  43. On the Riverside SSO set-up page, click Upload XML file and select the federation metadata file from your desktop to upload .
    azure-11.png
  44. On Riverside, click Submit.
    At the top of the page, you will see a confirmation of the submission. 
  45. Log in to Riverside via SSO to confirm the set-up works.

Icon.svg Good to know

  • You cannot edit the information after submitting it. If you need to make any changes, please contact your CSM.
  • All new users invited to the account should follow these steps login with SSO

Learn more