Setup Cloud Director SAML Using Microsoft Entra (Azure AD)
This article explains how to configure a Cloud Director tenant to use Microsoft Entra for authentication using SAML.
- Sign In to your Cloud Director Tenant using your existing account.

- Click on Administration.

- Expand Identity Providers > click on SAML.

- Ensure the Certificate isn't expired (If it is expired, click Regenerate Certificate) > Click Configure.

- Click Retrieve Metadata. A XML file should download.

- Log into Microsoft Entra at https://entra.microsoft.com.
- Expand Identity > expand Applications > click on Enterprise applications.

- In the top menu, click on New Application.

- Click on Create your own application.

- Enter a name for the application and select Integrate any other applicationyou don't find in the gallery (Non-gallery).

- Click on Create.

- Click on Set up single sign on.

- Click on SAML.

- Click on Upload metadata file.

- Select the XML file downloaded from Step 5 > Click Add.

- Click on Save.

- In the SAML Certificates section, click on Download next to Federation Metadata XML. It will download a XML file.

- Under Manage, click on Users and groups > click on Add user/group.

- Select the users/groups that should be able to authenticate with Cloud Director > click Assign.

- Go back to Cloud Director, click on Configure again.

- Go to the Identity Provider tab > slide the Use SAML Identity Provider to on.

- Click on SELECT METADATA XML File.

- Upload the XML file downloaded from Step 17. Click on Save.

- Expand Access Control > click on Users > click on Import Users.

- In the Import Users window, enter the email addresses of the users who will have access (These must be allowed in the Enterprise Application in step 19) > from the Assign Role, select a role to assign to the users > click Save.
