Microsoft Entra ID
Configure Voilà for Microsoft Entra ID
Create a new Enterprise Application
Name: voila.live
Type: non-gallery
Configure Single Sign On
Use the following configuration
Type: SAML
Basic SAML Configuration:
Identifier (Entity ID): https://api.voila.live/sso/saml (default name)
Reply URL (Assertion Consumer Service URL): https://api.voila.live/sso/saml/consume
Sign on URL: https://api.voila.live/sso/saml/init
Relay state: None
Logout URL: None
Attributes and claims
- Remove any previous mapping
- Add the following mapping
Microsoft Entra ID attribute | Voilà attribute |
---|---|
user.givenname | family_name |
user.surname | given_name |
user.email | |
user.email (or any field whose value is unique, ex: employeeId) | sub |
sharePersonalData | true (constant, see GDPR related paragraph) |
SAML Certificates
Token certificates
- Download the token signing certificate in base64 format
- Download the metadata file
- Hand over those files to Voilà
Verification certificates
- Edit SAML Certificates
- Select 'Sign SAML response and assertion'
Required: Yes
Allow SHA-1 : No
Upload certificate
What about the GDPR ?
Using the SSO feature has impacts on your GDPR compliance. Indeed, harvesting the user’s consent must be done by your organization and prior to your event.
Activating the SSO will prevent the player to display any kind of form at signup