Legacy Metro Retro Help
  • Metro Retro v3 - Help Guide
  • Metro Retro v2 - Help Guide
  • Introduction
    • Get Started with Metro Retro
  • Boards
    • Create a board
    • Design Mode & Meeting Mode
    • Share your board
    • How to hide and reveal sticky notes
    • How to set the timer
    • The Toolbar
    • Host controls
    • Customizing the board layout
    • Locking the layout
    • Collaboration tips
    • Import data to your boards
    • Export your board
    • Beta Features
  • Dashboard
    • Dashboard Overview
    • Workspaces
    • Template Library
  • Management
    • Admins
    • Security, Logins, SSO
      • Single Sign-On
        • Azure Integration
        • Google Integration
        • Okta Integration
    • Invite and Access Approvals
    • Manage People
    • Manage Workspaces
    • Billing & Subscription
      • Trials
  • Plans (Legacy)
    • Plans Overview (legacy)
      • Pro Plan (Legacy)
      • Business Plan (Legacy)
      • Enterprise Plan
  • Roadmap
    • Differences between v1 and v2
    • Release Notes
    • Roadmap
  • Technical
    • Technical Overview
  • Help
    • FAQs
      • General FAQS
      • "How-To" FAQs
      • Using Metro Retro FAQs
      • Pricing FAQs
Powered by GitBook
On this page
  • Prerequisites
  • How to find your Metro Retro Account ID
  • Integration Setup
Export as PDF
  1. Management
  2. Security, Logins, SSO
  3. Single Sign-On

Azure Integration

PreviousSingle Sign-OnNextGoogle Integration

Last updated 3 years ago

Prerequisites

In order to configure Azure SSO integration with Metro Retro you will need:

  • Admin access to your Metro Retro account.

  • Admin access to your Azure portal (with permission to add Enterprise Applications).

  • One or more authorized domains adding to your Metro Retro account (see end of article).

  • A note of your organizations Metro Retro Account ID.

How to find your Metro Retro Account ID

Before you begin, you will need your organization's 12 character Metro Retro Account ID. You can find this in the under the management menu within Metro Retro:

Integration Setup

From within the Azure portal, search for and select Enterprise Applications from the resources palette, click New Application and then Create your own application. Set the name as Metro Retro and select Integrate any other application you don't find in the gallery if not already selected.

Click Create.

Select Single sign-on from the left menu (or getting started quick link) and select SAML as the sign-in method.

Leave the default User Attributes & Claims settings, as per the screenshot above. If the defaults are different or you have changed them, please set them as above.

Next, download the Base64 encoded Certificate file from Section 3. Make a note of the Login URL and Azure AD Identifier from Section 4. We will need all these values to configure the Metro Retro side of the integration.

Go to your Metro Retro account administration screen and navigate to Single Sign-On. Map the values from Azure to Metro Retro like so:

  • Entry Point = Login URL

  • Issuer = Azure AD Identifier

  • Certificate = Text content of the Base64 certificate file

Once added, click Save Configuration. We recommend leaving the "Restrict login" setting off until you are sure all your team members are able to login via SSO otherwise it may block their access.

If you have not already had your authorized domains configured by a Metro Retro team member, please contact us on Intercom or at contact@metroretro.io to set these up. The domains should include all domains that your team will login from.

Authorized domains allow us to redirect users from Metro Retro to your SSO Identity Provider if they login directly via our login interface rather than going via your service portal. They are not required, but recommended.

Under Basic SAML configuration, enter your Metro Retro Account ID number as the Identifier (Entity ID) and set the Reply URL to . Leave all other fields in this section blank.

https://metroretro.io/login/saml
https://metroretro.io/manage
Metro Retro Account ID
SAML Settings
The data we need from Azure
Example configuration within Metro Retro