- Email issues
- On-premise version issues
- Integrations and migrating from other apps
- Errors and solutions
SAML integration with Azure Active Directory
Jitbit Hosted Helpdesk supports SAML integration with Microsoft Azure Active Directory, please find the setup instructions on Microsoft's website here: https://azure.microsoft.com/en-us/documentation/articles/active-directory-saas-jitbit-helpdesk-tutorial/
Basically this is what your settings screen should look like:
However you might run into trouble when configuring Azure SAML integration with your self-hosted Helpdesk installation or sometimes even the hosted installation that uses a "custom domain".
You might be getting this error:
Sorry, but we’re having trouble signing you in.
We received a bad request.
Additional technical information:
Correlation ID: 08895d59-0247-4582-9a70-3e05184e125f
Timestamp: 2016-01-06 21:55:04Z
AADSTS50011: The reply address 'https://xxxxxxxxx/helpdesk/Saml/Consume' does not match the reply addresses configured for the application.
Or you might be getting this error when editing setting in Azure:
If you're using a custom domain - make sure you use it in the "REPLY URL" setting, not the "*.jitbit.com"
Unfortunately we have no control over our listing in the Azure catalog, it is Microsoft who maintains these settings.
For the server on-premise installation you can add the app manually as follows
Solution - creating a custom "on-premise app" in azure
- Go to "Enterprise applications"
- "Non-gallery application"
- Type a name, just something you can remember later
- Click "Add"
- Wait until the app is created
- Click "configure single sign on"
- Select "SAML single sign on"
- Enter "https://www.jitbit.com/web-helpdesk/" into "Entity ID/Identifier" field
- Enter "https://YOUR_HELPDESK_ADDRESS/Saml/Consume" into the "Reply URL field" (please note the https prefix!! Also, don't forget to add the "/helpdesk/" part in the "YOUR_HELPDESK_ADDRESS" - if needed (it is need on our hosted version, but we can't tell for your server)
- Click "create new certificate"
- After everything is set up, download the certificate in Base64 format and copy-paste its contents into Jitbit Helpdesk settings (well, you know the drill)
- When creating a custom app make sure you have "https" in your "Reply URL" and that you use HTTPS for your helpdesk app, because Azure does not support "http" connections when working with SAML. And it will throw a very misleading error, something like this "The reply address 'http://my_server:51030/Saml/Consume' does not match the reply addresses configured for the application: 'https://www.jitbit.com/web-helpdesk/'." which has nothing to do with the actual error - that you forgot the HTTPS prefix.
- If you have a custom domain name, e.g. yourhelpdesk.yourcompany.com, please make sure that your SAML settings reflect that domain name and not your original third-level domain name yourhelpdesk.jitbit.com.