Skip to main content

Set up SAML Single Sign-On with Microsoft Entra

Guide to setting up SAML SSO with Microsoft Entra for secure and streamlined access to Bonusly.

Updated over 2 months ago

This article is best for:

- Global Admins

In this article:

Add Microsoft Entra Information to Bonusly

  1. Ensure that you have added the Bonusly enterprise app to your Microsoft Entra instance. You can do this by clicking the New Application button and searching for Bonusly!

  2. Once the app has been added, click on it in your Enterprise application section and navigate to the Single Sign-on section. From here, you will want to copy the following information.

  3. From the "SAML Certificates" section, copy the App Federation Metadata URL

  4. From the "Set up Bonusly" section, copy the Microsoft Entra Identifier

  5. Next, head to your Integration page in Bonusly and click on SAML.

  6. Fill in the information you have copied from Microsoft Entra into Bonusly and click save.

    1. IdP Metadata URL: the Federation Metadata URL that you copied in step 3

    2. IdP Issuer (Entity ID): the Microsoft Entra Identifier that you copied in step 4

    3. Click the "Save" button
      ​

Add Bonusly Information to Microsoft Entra

  1. From your SAML page in Bonusly, copy the Consumer URL and the SP Issuer. (The Consumer URL is always of the form: https://bonus.ly/saml/APP_ID/consume)

  2. Next, head to the Basic SAML Configuration section in Microsoft Entra, fill in the information, and save it!

    1. Identifier (Entity ID): a unique string identifying the provider issuing a SAML request. This is the SP Issuer you have copied from the previous step.

    2. Reply URL (Assertion Consumer Service URL): the Consumer URL you copied from your SAML page in the previous step.

Test it out!

  • IdP-initiated authentication should now work.

  • SP-initiated authentication can be tested by logging out and then visiting the URL https://bonus.ly/saml/APP_ID/index

    • Make sure you replace APP_ID from the above link with the App ID from the SAML Integration page in Bonusly!

Restricting Login Methods

Once you have confirmed that your configuration is correct and the integration is working, you can set login methods to "Restrict to Single Sign On" from your Admin > Company > Recognition settings page.

To restrict to SAML SSO only:

  1. Go to Manage Admin Settings > Company > Account Settings​

  2. Scroll down to "Security" and select the check box to only allow users to login via single sign on.
    ​

    ​

  3. Select the "Save settings" button.

FAQ

Does Microsoft have any resources on how to set up the SAML integration with Bonusly?

Yes! The following Microsoft help article details how to set up the SAML integration with Bonusly: https://learn.microsoft.com/en-us/entra/identity/saas-apps/bonus-tutorial.

Questions? Please send us a note to [email protected]; we'd be happy to help!

Was this article helpful? Let us know by rating it below with an emoji and sharing your feedback!

Related Articles
How to Configure SAML SSO with ADFS
How to set up Single Sign On with SAML
How to Configure SAML SSO and User Provisioning with Okta
Did this answer your question?