After running through the steps mentioned here, you'll need to configure a couple things on the Azure-AD side.


Start by logging into your Azure-AD portal and navigating to the Azure AD SAML Toolkit. You'll want to make sure you have at least one user you can test login with:




Click on Single Sign On  in the left nav of your Azure portal and edit the Basic SAML Configuration section so that:

 

1. The Identifier and Reply URL in Azure match the Consumer URL and Issuer in GlassFrog.
2. The Sign on URL in Azure matches Your Custom Single Sign-on URL in GlassFrog.




* If your GlassFrog users have multiple languages configured you will also have to add the subdomain for their specific language in the Identifier (Entity-ID) and Reply URL (Assertion Consumer Service URL) field of your Basic SAML Configuration in Azure



Next, you will edit the User Attributes & Claims section in Azure. Here you want to add two new claims (and punctuation is important). 

The two claims are:


User.FirstName which maps to user.givenname
User.LastName which maps to user.surname


When finished this section should look like this:








Finally, go to the  SAML Signing Certificate  section in Azure and copy the App Federation Metadata Url.


In GlassFrog select Configure Using >  Metadata URL and add the URL you copied from Azure




Once all that is done you can go to the bottom and Test single sign-on with Azure AD SAML Toolkit