How To Set Up Your Own Microsoft App (SAML)

Last updated 11/19/2024

Step 1

Log in to the your Azure Portal:

https://portal.azure.com/

Step 2

Under Azure services, click on Enterprise applications.

If you don't see it, click on "more services" and search for it.

Step 2

Step 3

Click New Application.

Step 3

Step 4

  • Click Create your own application.
  • Enter a name for your application (we recommend using your organization name).
  • Select Integrate any other application you don't find in the gallery (Non-gallery)
  • Click Create.

Alternately, you can choose an existing SAML app from Microsoft.

Step 4

Step 5

Under Manage in the left menu, go to the Single sign-on page, and select SAML.

Step 5

Step 6

On the Single sign-on page, click the edit button at the top right of the Basic SAML Configuration section.

Step 6

Step 7

  • For Entity ID, enter anything you want. For example, you can enter your company name.
  • For Reply URL, enter:

    https://api.breadbutter.io/callback

  • If required, for the Sign on URL enter:

    https://api.breadbutter.io/callback

  • Click Save.
Step 7

Step 8

For the User Attributes & Claims section, ensure that at least the following are present:

  • emailaddress
  • givenname
  • surname
Step 8

Step 9

  • Download the Federation Metadata XML for the Bread & Butter configuration below. Specifically, take note of the Login URL, Identifier (Entity ID) and X.509 Certificate.
  • Set a reminder for yourself to generate a new Certificate before it expires. If the Certificate expires, your users will no longer be able to log in with the provider.
Step 9

Step 10

Go to Users and groups in the left menu, and add the users and user groups you want to allow to authenticate with this app.


Step 11

Bread & Butter Setup:

  1. Go to https://app.breadbutter.io/sign-in/
  2. Click Sign In and authenticate (or Sign Up make a new account and authenticate)
  3. Go to Settings in the left menu.
  4. Click on the Microsoft button under SSO Settings > Enterprise Accounts.
  5. Choose SAML for the protocol.
  6. Enter a name.
  7. Enter a description (optional).
  8. Enter the Login URL from the setup page in Azure.
  9. In the Client ID field, enter the Identifier (Entity ID) that you set above.
  10. In the X.509 Certificate field, enter the X.509 certificate from the Federation Metadata XML document that you downloaded above. Do not include the <X509Certificate> begin and end tags.
  11. Click Save.
  12. Enable Microsoft by clicking the new entry in the Microsoft Identity Providers list
Step 11


Don’t use Bread & Butter? Want to learn more about how Bread & Butter solves the four biggest problems facing marketers today? Book a demo and see how Bread & Butter is helping marketers make the most of their first-party data