...
1. Customer sets up the first app in Azure AD: ADPOINT Java UI:
1.1. Basic SAML Configuration
Identifier (Entity ID): https://pm-test.integration-x.com/sso-saml
Reply URL (Assertion Consumer Service URL): https://pm-test.integration-x.com/sso-saml/?RelayState=adpoint-java-ui
Sign-on URL: https://pm-test.integration-x.com/sso-saml/?RelayState=adpoint-java-ui
Relay State: adpoint-java-ui
1.2. User Attributes & Claims
Unique User Identifier (Name ID): user.userprincipalname
ADGroups: user.groups
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress: user.mail
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname: user.givenname
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name: user.userprincipalname
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname: user.surname
1.3. Assign users and roles.
2. Customer sets up the second app: ADPOINT Web Client - similar as above but:
Identifier (Entity ID): https://pm-test.integration-x.com/sso-saml2
Reply URL (Assertion Consumer Service URL): https://pm-test.integration-x.com/sso-saml/?RelayState=adpoint-web-client
Sign-on URL: https://pm-test.integration-x.com/sso-saml/?RelayState=adpoint-web-client
Relay State: adpoint-web-client
3. Customer sends to Integration X:
"App Federation Metadata URL" field value
Information about groups and roles
...