Configure SSO for (existing) Enterprise application in AAD

%3CLINGO-SUB%20id%3D%22lingo-sub-444422%22%20slang%3D%22en-US%22%3EConfigure%20SSO%20for%20(existing)%20Enterprise%20application%20in%20AAD%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-444422%22%20slang%3D%22en-US%22%3E%3CP%3EWe%20are%20preparing%20to%20migrate%20from%20ADFS%20to%20AAD.%20For%20this%20we%20are%20registering%20the%20Relying%20party%20trusts%20from%20ADFS%20as%20Enterprise%20applications%20in%20AAD.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ESome%20of%20our%20SaaS%20applications%20were%20already%20present%20as%20an%20Enterprise%20applications%20because%20they%20have%20an%20App%20registration%20(to%20provide%20the%20Saas%20application%20access%20to%20the%20graph%20api).%20If%20I'm%20not%20mistaken%20Azure%20creates%20an%20associated%20Enterprise%20application%20when%20setting%20up%20an%20App%20registration.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThis%20auto%20created%20Enterprise%20application%20does%20not%20have%20an%20SSO%20blade.%20Adding%20a%20second%20Enterprise%20application%20(with%20SSO)%20is%20also%20not%20possible%20because%20the%20Entity%20ID%20is%20used%20by%20the%20auto%20created%20Enterprise%20application.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EIs%20there%20another%20way%20to%20enable%20SSO%20on%20an%20existing%20Enterprise%20application%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThanks!%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-444422%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EIdentity%20Management%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E
Highlighted
Super Contributor

We are preparing to migrate from ADFS to AAD. For this we are registering the Relying party trusts from ADFS as Enterprise applications in AAD.

 

Some of our SaaS applications were already present as an Enterprise applications because they have an App registration (to provide the Saas application access to the graph api). If I'm not mistaken Azure creates an associated Enterprise application when setting up an App registration.

 

This auto created Enterprise application does not have an SSO blade. Adding a second Enterprise application (with SSO) is also not possible because the Entity ID is used by the auto created Enterprise application.

 

Is there another way to enable SSO on an existing Enterprise application?

 

Thanks!

0 Replies