Single Sign-On
      Back to home
      1. Help Center
      2. Integrations
      3. Single Sign-On

      Setting Up Single Sign-On with Entra ID (Formerly Azure AD)

      This article will run you through how to set up SSO between Entra ID and Holistiplan

      Entra ID Setup

      1. Inside your Azure Console, navigate to the Microsoft Entra ID Service

      Screenshot 2024-12-16 at 8.40.04 AM

      2. On the next screen click Add and then select Enterprise Applications

      Screenshot 2024-12-16 at 8.40.24 AM

      3. Here select Create your our application and in the following modal, name the application (this can be anything, but preferably something to tie it to Holistiplan). Under "What are you looking to do with your application" make sure that Integrate any other application you don't find in the gallery (Non-gallery) is selected

      Screenshot 2024-12-16 at 8.40.35 AM

      Screenshot 2024-12-16 at 8.40.50 AM

      4. On the subsequent page, select Set up single sign on

      Screenshot 2024-12-16 at 8.41.34 AM

      5. Next click on SAML

      Screenshot 2024-12-16 at 8.41.59 AM

      6. Next in the section labeled Basic SAML Configuration click on Edit

      Screenshot 2024-12-16 at 8.42.21 AM

      7. Here you will want to fill in the Entity ID and the Assertion Consumer Service URL as written and shown below. Then press save and exit out of the window.

      Entity ID: https://app.holistiplan.com

      Assertion Consumer Service URL: https://app.holistiplan.com/sso/complete/saml/

      Screenshot 2024-12-16 at 8.44.22 AM

      8. Next, under the section labeled Attributes & Claims, press Edit and make sure the information in the following window matches the following. Once confirmed feel free to exit out of this window 

      Screenshot 2024-12-16 at 8.46.12 AM

      9. Finally, under the section labeled SAML Certificates download the Federation Metadata XML. This will be used later during our the set up on the Holistiplan side. 

      Screenshot 2024-12-16 at 8.46.38 AM

      Please note: Because of the way SSO is implemented within Holistiplan, the Test feature within Entra ID will not return a success

      This concludes the Entra ID portion of the SSO configuration. Now please log in to your Holistiplan app, where the rest of the set up will take place. 

      Holistiplan Firm Admin Setup

      1. Open your Holistiplan Application and navigate to Settings > Security Settings. Here you should see the following box. If you don't please reach out to support@holistiplan.com to get this enabled

      Screenshot 2024-12-16 at 8.50.39 AM

      2. Select Entra ID (AzureAD) as your Identity Provider

      Screenshot 2024-12-16 at 10.21.18 AM

      3. Click on the Entra ID (AzureAD) Settings button

      Screenshot 2024-12-16 at 10.22.01 AM

      4. Next click on Import from XML and upload the xml metadata file we downloaded from Entra ID in step 9 of the Entra ID Setup section

      Screenshot 2024-12-16 at 10.24.11 AM

      This will auto-populate the following fields, and should look something like this afterwards. Then press Submit.

      Screenshot 2024-12-16 at 10.24.22 AM

      6. Finally either select Enable SSO or SSO Only (no passwords) based on your firms preference

      Screenshot 2024-12-16 at 10.24.36 AM

      After this your setup is complete! Feel free to log out and log back in via SSO.

      If you're still experiencing any issue or having any trouble with this setup, reach out to support@holistiplan.com