A user was trying to configure SAML login with Azure app registration for two ControlUp DEX tenants; however, the Unique Identifier was the same in both tenants. It was suggested to make the Relying Party Identifier either editable or unique per account. It was further suggested to use the same Azure Application in both DEX organizations settings, however, this would mean giving entry to all tenants. The user was informed that this is not yet possible but will be added to the next year roadmap.
Read the entire ‘Configuring SAML Login with Azure App Registration for Multiple ControlUp DEX Tenants’ thread below:
I manage 2 ControlUp DEX tenants for our customers. I am trying to setup SAML login through our internal azure app registration. I have completed this for our first tenant. When configuring the second tenant i ran in to the issue that the Unique identifier contains the same value in the different tenants. Is there a way to configure a different Identifier?
Even though our colleagues are working for the samen company we would like to keep access to the tenants separated and based on certain resource groups.
@member I’ve ran into this in the past. We should make the relying party identifier either editable or unique per account to make this work I think
We are supporting multiple organizations with the same application on the same region.
You can use the same application’s configurations on the second organization and it will work for both organizations
That sounds good, but our Azure tenant gives me an error while configuring the second SAML login when I enter the same identifier.
You don’t need to add a new application in Azure.
Use the same Azure application in the DEX organizations settings
I see, this would mean that when assigning groups and resources I would give entry to all ControlUp tenants. We were hoping to keep this separate so access is only given to certain groups. I see this is technically not possible.
Not yet 🙂, I will add it to next year roadmap
Thanks for the fast replies and suggestions 🙂 . Hopefully next year then.
Continue reading and comment on the thread ‘Configuring SAML Login with Azure App Registration for Multiple ControlUp DEX Tenants’. Not a member? Join Here!
Categories: All Archives, ControlUp DEX Platform