You configure Microsoft Entra ID (formerly Azure AD) in the TD Console control panel, under Sign-in Settings.
The following fields are pre-populated:
Account Name
Entity ID
Protocol
When you click to edit, you see the following dialog.
In the dialog, you see a warning that when you implement SSO, account users, who currently sign-in to TD Console using Google SSO, are immediately affected.
Fields that you specify are as follows:
Identity Provider Name
- Select one from the supported list of IdP.
Sign-in Endpoint URL
- the IdP URL that the user uses to sign into Treasure Data. Obtained from your IdP.
Sign-out Endpoint URL
- the IdP URL that the user is in when they sign-out of Treasure Data. Obtained from your IdP.
Certificate File
- Privacy Enhanced Mail Certificate file. Upload the .pem generated certificate from the IdP to validate the SAML response from the IdP to Treasure Data. Obtained from your IdP.
Your configuration looks similar to the following:
