Azure Active Directory SSO

Azure Active Directory is a Microsoft Azure service which provides identity and access management. Opsgenie supports single sign on with Azure AD, which means your organization can easily incorporate Opsgenie into your application base in Azure AD and let your users securely access Opsgenie.

For general information about Opsgenie's Single Sign-On feature, refer to the Single Sign-On with Opsgenie document. This document describes the specific instructions you can use to integrate Azure Active Directory with Opsgenie SSO.

To configure Single Sign-On integration between your Azure Active Directory and Opsgenie accounts, go to Opsgenie SSO page, select "Azure AD" as provider and follow the instructions below:

Setting up Azure Active Directory Integration

  • On another tab or page, open your Azure Portal and navigate to Azure Active Directory
2880
  • Switch to the directory in which the Opsgenie application will be added and navigate to the App Registrations tab in your directory.
2880
  • Click New application registration button at the top panel.
  • On the next screen, give a name for the application and select Web app / API as Application type.
  • Write https://www.opsgenie.com to Sign-on URL field
1080
  • Navigate to the application you have recently added in the directory and click All Settings
1808
  • Click on Properties on the right panel and write your App Id URI field. You can find your APP ID URI field on your settings page of your Opsgenie account. Then, click the save button at the top left corner to save these changes.
1226
  • Navigate to the App Registrations panel and click on the Endpoints button on the top panel.
  • On the Endpoints screen, copy the URL at the FEDERATION METADATA DOCUMENT field
  • Switch to Opsgenie SSO Settings page that you have opened at the beginning and paste the certificate value into Metadata URL field.
  • Switch back to Azure AD Endpoints screen and copy the URL at the SAML-P SIGN-ON ENDPOINT field. Paste this URL into SAML 2.0 Endpoint field at your Opsgenie SSO Settings page.
  • Click Save Changes on your Opsgenie SSO Settings page.
1086
  • On Opsgenie SSO Settings page, copy the single sign-on URL that is generated for you.
  • Go back to your app settings page on Azure Portal and click on Reply URLs.
1278
  • Replace "https://app.opsgenie.com/" with your the single sign-on URL that you have recently copied. Click Save that is at the top panel and wait until your configuration is saved.
1626

🚧

** Make sure that email addresses of users are exactly same on both Opsgenie and your Azure Active Directory.

Please note: Provisioning is not available for Azure Active Directory.

  • Now users in your active directory can login with Opsgenie via SSO using their directory credentials.