Configuring Azure for Coveo Cloud V2 SAML SSO

Azure is a set of cloud services provided by Microsoft. You can use it to build single sign-on (SSO) applications, among other things (see What is Azure?).

An Azure AD Premium subscription is required to build an SSO application for Coveo Cloud V2. The application creation feature used in the procedure below is not a feature of the basic Azure AD subscription (see Configure your Azure Portal).

Single sign-on allows users to log in to several systems with a single ID and password. Many SSO systems support Security Assertion Markup Language (SAML) 2.0, which is an XML-based, open-standard data format, to allow an external service provider to rely on the user authentication performed by a trusted identity provider (see Security Assertion Markup Language).

As a Coveo Cloud V2 administrator, you can implement SAML SSO when your company uses Azure Active Directory (AD). Users can then log in to Coveo Cloud V2 without having to provide their username and password since their identity has previously been validated when logging in to their Azure session.

To allow users to log in via SAML SSO, Coveo Cloud V2 must be able to trust and rely on Azure to authenticate users wishing to login. To establish this trusting relationship, you must configure Azure and then Coveo Cloud V2 so that both parties can exchange authentication information.

What’s Next?

Configure your Coveo Cloud V2 organization to allow Azure user authentication (see Configuring Coveo Cloud V2 SAML SSO).