DASTRA
English
English
  • What is Dastra
  • 🇪🇺USEFUL REMINDERS
    • What is GDPR ?
    • GDPR key concepts
      • Personal data
      • Record of processing activities (ROPA)
      • Privacy impact assessment
      • Data retention period
      • Data Subject Rights (DSR)
      • Privacy by design and by default
      • Security measures
      • Data breach notifications
    • Risk management
      • Definition of risks
      • Risk assessment
      • Vendor risk management
  • 🧑‍🎓GETTING STARTED
    • Setting up
      • Create and set up a workspace
      • Create and set up organizational units
      • Appointing a DPO
      • Add a lead authority
      • Invite users
      • Managing roles and permissions
      • Create and assign teams
      • Frequently asked questions
    • Tutorial
      • Step 1: Setting up
      • Step 2: Map your personal data processing and draw up a register
      • Step 3: Managing risks
      • Step 4: Prioritize actions
      • Step 5: Implement internal processes
      • Step 6: Document compliance
    • Support
      • The dastronaut's assistant
      • Online help
      • Request support
      • The customer support process
  • ⚙️Features
    • Dashboard
    • General
      • Advanced Filters
      • Import your data (Excel, Csv)
      • Tag management
      • Custom fields
      • AI Assistant
      • Email templates
    • Data Mapping
    • Record of processing activities
      • "Data controller" record
      • "Data processor" record
      • Establish your record
      • Export / import the record
      • Use a processing activity template
      • Declare a processing activity
      • Complete a data processing activity
        • General information
        • Stakeholders
        • Purposes
        • Dataset
        • Assets
        • Data subjects
        • Data subjects rights (DSR)
        • Recipients
          • Data transfers outside the EU
        • Security measures
        • Impact analysis
        • Documentation
      • Create relationships between processing activities
      • Processing freshness
      • Share the record of processing
      • Data visualization
        • View the treatment tree
        • View the record data map
        • View the transfers map
      • Frequently asked questions
    • Audits and DPIA
      • Create or modify an audit template or DPIA
      • Scheduling an audit or a PIA
      • Share an audit report or PIA
      • FAQ
    • Privacy hubs
      • Create a Privacy hub
      • Configure your Privacy hub
        • Homepage and general configuration
        • Questionnaires
        • Data subject requests
        • Record of processing activities
        • Attachments
        • Organizational chart
        • Contacts
        • Security
        • Appearance and design
      • Preview and share your privacy hub
      • Collecting data processing projects from a Privacy hub.
    • Contracts
      • Declare a Contract
      • Structure of a contract
      • Documents
      • Assets
      • Signers
      • Linked users
      • Sign the contract
      • Docusign integration
      • Contract versions
      • Contract templates
    • Risk management
      • Glossary of terms
      • Risk management process
        • 1. Identification
        • 2. Assess
        • 3. Monitor
        • 4. Control
        • Let's recap
      • Dastra / eBios RM comparison
      • Attach a risk to a processing activity
      • FAQ
    • Planning
      • Create your action plan
      • Create or modify a project or an iteration
      • Monitor, screen or export your tasks
      • Customise the task workflow
      • Share as calendar
      • Customise the task workflow
      • Go further with planning
      • FAQ
    • Data subject right request
      • Manage data subject right requests
      • Set up a data subject right request widget
      • Technical integration
      • API integration
    • Manage data breach notifications
      • Report a data breach
      • Export your data breach notifications
    • Manage cookies consent
      • Widget configuration
        • Preliminary study
        • Cookies scanning
        • Classify cookies by consent categories
        • The purposes of cookies
        • Implement a cookie consent widget
        • Collect proof of cookie consent
        • Go further on cookie consent
        • In case of unavailability
      • Technical integration
        • Functioning of the widget
        • Quick start
          • Wordpress
        • Language management
        • Test the integration of a widget
        • Blocking cookies
          • Blocking iframes (twitter/youtube...)
          • Google Tag Manager
        • Advanced Design
        • Manage consent programmatically
        • User identification
        • Mobile applications
          • Hybrid applications
          • Native applications
        • TCF 1.1/2.0
      • RGAA compliance
      • Breakdown service
    • Regular review (freshness)
    • Custom Reporting
      • Integration with data analysis tools (BI)
    • AI Systems
      • Establishing a record of AI systems
      • Risk analysis and business value
      • Transparency notice
      • AI Models repository
    • Advanced configuration
      • SCIM
      • Roles and permissions
      • Single Sign On (SSO)
        • SAML 2
        • OpenId
        • ADFS
        • Active Directory
        • Okta
        • Known problems
      • References
      • API key management
      • Notifications
      • Workflow steps / process flow
      • Incoming mail data collection
      • OneDrive/Google Drive integrations
      • Webhooks
      • SMTP configuration
      • Workflow rules
      • Message templates
      • Email domains
  • PARTNERS
    • Portal
  • 📄API documentation
    • Configuration
    • Authentication
    • API References
    • Integrations
      • Frequently asked questions
  • 🛡️Security
    • Security at Dastra
    • Security roadmap
    • Quality of Service
  • Certifications
  • 🤖Other
    • FAQ
    • Known problems
    • Changelog
  • Referentials
    • CNIL referentials
      • HR referential from CNIL
Propulsé par GitBook
Sur cette page
  • Configuration of the application in the Azure portal
  • SSO Client Configuration in Dastra
  • Step 1: Create an OpenId SSO login in Dastra.
  • Step 2: Configure the SSO login in Active Directory
  • Step 3: Add the Certificate to the Dastra Client
  • Step 4: Configure the IdP URLs in Dastra
  • Test your SSO Connection
  • For further information

Cet article vous a-t-il été utile ?

  1. Features
  2. Advanced configuration
  3. Single Sign On (SSO)

Active Directory

This page explains how to set up Dastra's SSO with Microsoft's Active Directory using the Saml2P protocol.

Dernière mise à jour il y a 1 an

Cet article vous a-t-il été utile ?

Configuration of the application in the Azure portal

  • Go to the Microsoft Azure portal:

  • Click on Active Directory

  • In the left navigation, click on Enterprise Applications

  • Click on the New application button

  • Then click on Create your own application

  • Enter the name of the application, you can simply put "Dastra"

  • Select the box "Integrate any other application you don't find in the gallery (Non-gallery)"

  • Your application is created!

  • Click on Single-Sign-On and select SAML

  • You will arrive to this page:

SSO Client Configuration in Dastra

Step 1: Create an OpenId SSO login in Dastra.

  • Click on "Add an SSO login"

  • Select SAML as the "SSO Protocol" type

  • Enter a connection label. For example, "Active Directory"

Step 2: Configure the SSO login in Active Directory

  • Return to the SAML configuration page of Active Directory

  • Click on the "Edit" button in the first part.

  • Enter the connection information (Entity ID and ACS Url) in the following way:

  • Click on Save

  • Go directly to part 3 to download the certificate in base64 format.

Open the CER file with your preferred text editor (for example, Notepad) and copy the content (CTRL + C).

Step 3: Add the Certificate to the Dastra Client

  • Return to the SAML connection creation screen in Dastra

  • Paste the text of the certificate into the "Identity Provider Certificate (RAW)" field (CTRL + V)

Step 4: Configure the IdP URLs in Dastra

  • Copy the three links Entity Id, SSO Url, and Logout Url from step 4 of Active Directory

  • Copy the URLs following this scheme:

  • Login URL => Single sign-on url

  • Azure AD Identifier => Identity provider's Entity Id

  • Logout Url => Identity provider Signout url

  • Your SSO configuration form in Dastra should look like this:

  • Save your changes in Dastra.

Before testing the connection, make sure that a user is assigned to the new application.

Test your SSO Connection

Then click on the "Test" button at the bottom of the form in the Active Directory. If everything works correctly, you should be redirected to the Dastra application.

If you have not activated automatic account provisioning, Dastra will deny access if the local account has not been created via an invitation.

For further information

Go to the

⚙️
Dastra SSO configuration page
Known problems
SAML 2
https://portal.azure.com/