Configure Azure SAML SSO in Insomnia
Obtain the single sign-on URL from the Insomnia SSO settings and add them to a new Microsoft Entra SAML Toolkit in Azure. Copy the Login URL and signing certificate from Azure and enter those in the Insomnia SSO settings. Finally, add users or groups to the Azure app integration and invite those same users to the Insomnia app.
Prerequisites
Insomnia permissions
You need:
- Admin permissions for your org in Insomnia
- An organization created after activating your Enterprise license in Insomnia. You can create an org from the Insomnia account settings.
Azure permissions
You need:
- A Microsoft Entra subscription that can enable the Microsoft Entra SAML Toolkit SSO
- Cloud Application Administrator or Application Administrator permissions
Domain permissions
You need a domain you own as well as permissions to make DNS records.
Create the SSO connection in Insomnia
Before you can configure the SSO connection in Azure, you must start configuring the SSO settings in Insomnia so you have access to the single-sign on URL and audience URI for the Azure settings.
- In your Insomnia account settings, click your account at the top right and select Enterprise Controls from the dropdown.
- Click SSO in the sidebar and then click Create Connection.
- In the SSO settings, enter your company’s domain.
Keep this window open while you configure the settings in Azure.
Add the Microsoft Entra SAML Toolkit and configure SSO settings
Now that you have the single-sign on URL from Insomnia, you can create a new Microsoft Entra SAML Toolkit.
- In the Microsoft Entra admin center, create a new application and add the Microsoft Entra SAML Toolkit from the gallery.
- Rename the toolkit “Insomnia SAML”.
- Navigate to the SSO settings for the Microsoft Entra SAML toolkit you just created.
-
Configure the following SAML SSO settings:
Azure setting
Value
Identifier (Entity ID) The Audience Restriction field in the Insomnia SSO settings. Reply URL The SSO URL in the Insomnia SSO settings. Sign on URL The SSO URL in the Insomnia SSO settings. -
In the Attributes & Claims settings section, add an attribute and configure the following attribute settings:
You need…
Use the following plugin policy strategies…
A high level of accuracy in critical transactions. An example is a transaction with financial consequences. clusterorredisProtect backend services from overloading caused by specific users or attacks. High accuracy is not as relevant. local - In the Entra application, find and copy the Login URL and the base64 version of the signing certificate. These will be used in the Insomnia SSO settings.
Enter the sign on URL and signing certificate in the SSO settings in Insomnia
Now that Azure SSO is configured and you have the Login URL and certificate from Azure, you can finish configuring the SSO settings in Insomnia.
- In the Insomnia SSO settings, enter the Login URL and signing certificate from Azure.
- To verify the connection, click Create connection. If the connection is successful, you will get a message that says “Your SAML connection has been successfully updated.”
Add users or groups to the application in Azure
You can add users or groups to the application in Azure. They won’t be allowed to log in with SSO yet though.
In Azure, assign users or groups to the app.
Invite users to Insomnia
Now that users or groups are assigned to the app in Azure, you can start inviting users to Insomnia. Once they accept the invite, they can log in to Insomnia with SSO.
- In your Insomnia account settings, click your account at the top right and select Your organizations.
- Click the organization you configured SSO for.
- Enter the emails of the users you added to the Azure app and click Invite.