Integrate Fluid with your SAML 2.0 IDP 

The instructions will link an App Registration created in Azure with your Fluid instance. This will authenticate your Fluid logins against the Azure however they will also work with SAML services such as Google Workspaces and Ping. 

Please follow the instructions below to setup SAML. 

1. In the Azure Portal (portal.azure.com) create an “App Registration”. Select “App Registrations” and click “New registration”.
   
   
2. Enter the name of your application. For example “Fluid”.
   
   
3. Select the radio option “Accounts in this organizational directory only”
   
   
4. Select “Web” from the Redirect Uri dropdown and enter the URL of your Fluid instance. E.g. https:\\domain.fluid.work”. (This should be the same link that you use to access Fluid.)
   
   
5. Click the “Register” button at the bottom.
   
   
6. Click “Add an Application ID Uri”
   
   
7. Click “Set”
   
   
8. Use the Uri that is provided by Microsoft.
   E.g. “api://0c49dd45-0212-4135-a112-d8e3397dff22”
   
9. Click “Save”
   
   
10. Within your Fluid instance, click the “Administration Console” from the top right drop down menu. Then click “Authentication Providers”.
    
    
11. Turn “Allow Saml Authentication” to “Yes”.
    
    
12. Click “Add Provider” to add the App Registration that you created using the Azure Portal.
    
13. Choose “Office 365” from the dropdown.
    
    
14. Type a friendly name such as “Office 365” in the Name field.
    
    
15. Type the Application Id that you created in step 8. This is the Fluid instance URL with no trailing slashes. E.g. “https://domain.fluid.work”.
    
    
16. You will need to get the IDP information from Azure. In the Application you just created select “Endpoints”.
    
    
17. Copy the URL of the entry for “Federation metadata document”. (On the right of the text box there is a copy button).
    
    
18. Paste this URL in your browser. This will open an XML document. The first line will contain the Entity Id. Copy this value and paste it into the IDP Entity Id field in Fluid.
    
    
19. Copy and paste the Federation metadata document (Step 17) into the “Metadata URL” field.
    
    
20. Click the “Save” button to save the SAML provider.
    
21. Click “Save And Apply Settings” to save the changes and restart the Fluid Application with the new settings. Note: This button also restarts the website and can take a few minutes. During this time users will not be able to access the Fluid instance.
    
    
22. In Fluid select the “Update My Profile” link from the drop down on the right of the screen.
    
    
23. Click “Link Your Account” to link the account with the provider. (You will need your login details  and follow the on screen prompts)
    
    
24. Log out of Fluid, on Login you will see the following option:
    
    
25. Click “Sign in with….” To sign into your account using Azure AD SSO.
    
    
26. Congratulations you have successfully setup Azure AD SSO on your Fluid instance. For any further help please contact support and they will gladly assist you.