To configure Equinox SSO via Entra ID:
Log into the Entra admin center
Navigate to Applications > Enterprise Applications
Click New Application
Click Create your own application
Enter a name, for you to identify this application
Select Integrate any other application you don’t find in the gallery (Non-gallery)
Click Create
Azure will create your application (this can take 1-2 minutes)
- Go to the “Single Sign on” tab and edit the "Basic SAML Configuration section" and enter the following:
Where [SERVER-URL] is your Equinox server address for example for our main UK server this would be www.workanyware.co.uk or for our European server would be europe.equinox-ipms.comField Value Identifier https://[SERVER-URL]/single-sign-on/www/module.php/saml/sp/metadata.php/default-sp Reply URL https://[SERVER-URL]/single-sign-on/www/module.php/saml/sp/saml2-acs.php/default-sp
Your identifier and reply URL in Microsoft Entra should look like the image below:
Next you need to input the information Entra gives you back into Equinox. Login to Equinox and go to System > System Preferences > Single Sign On
1. Copy the App Federation Metadata Url into the Metadata URL field on Equinox
2. Copy the Microsoft Entra identifier into the SSO IDP Name field on Equinox
3. Check the Enable SSO box in Equinox
4. Navigate to your login URL. This will be in the format of: https://[SERVER]/login/[ORGREF]
For example: https://workanyware.co.uk/login/smithandco
(if you are unsure of your ORGREF please contact Equinox support for this)
This is the primary link your organisation will use to login to Equinox, if your organisation uses a portal or managed browser bookmarks / home page / desktop shortcuts to access Equinox you might consider updating this URL once satisfied that your Single Sign On is working correctly.
Be sure to add any users or groups you want to be able to access Equinox to the application in Entra ID otherwise your users will get an error upon login.
You can add individuals, your entire organisation or groups for certain departments.
That's it! Your users should now be able to login via the Single Sign-On button provided they have an account already provisioned in Equinox that uses the same email address as their Entra account.