Skip to main content

Azure SSO Setup with Box of Books

This article provides information on how to configure your Azure Active Directory instance for use with Box of Books

Gopi Premachandran avatar
Written by Gopi Premachandran
Updated this week

Setup in Azure

  1. Visit the Azure portal (https://portal.azure.com/)

  2. Click on Azure Active Directory under Azure Services

  3. Click Enterprise Applications

  4. Click New Application

  5. Click Non-gallery application.

  6. Put 'Box of Books' in the name field and click Add.

  7. Click "2. Set up single sign on"

  8. Click SAML

  9. Click on Upload metadata file and upload the XML file provided by Box of Books. This should auto fill all of the required fields.

  10. Save and exit.

  11. Edit the second box User Attributes and Claims. Click to Edit Unique User Identifier (Name ID)

    1. When creating additional claims for Groups – click the Add a Group claim button above and make sure to select Application Group  under Group type.

      Please note that if you are using nested groups – make sure to add in the memberOf attribute, as well as create the memberOf claim.

      also under Source attribute – select sAMAccountName

      Click Choose name identifier format and ensure it is set to Persistent in the drop down.
      Source Attribute should be user.userprincipalname.

  12. Save and exit

  13. Edit the third box SAML Signing Certificate, ensure that Signing Algorithm is set to SHA-256

  14. Click Download next to Federated Metadata XML from the SAML Signing Certificate box. You will need to send this file to us so we can configure the integration on our side.

  15. Go to the Users and Groups menu and add the users, groups and/or roles that will be logging into Box of Books by SSO.

  16. Please send the following to us so we can complete the set up:

    1. The Federated Metadata XML file you downloaded.

    2. Azure credentials (username and password) for a test student and test teacher account so that we can check the integration is working. Please ensure that these credentials match the conventions in place for your other users- this includes roles and group membership as applicable in your system

Did this answer your question?