Configure Single Sign-On with Microsoft Entra ID (Azure AD) using the SAML protocol. The setup is completed in two steps in the imper.ai Single Sign-On (SAML) Configuration dialog: first you register imper.ai in Entra, then you import the Entra metadata back into imper.ai.
Step 1: Configure your Identity Provider
In the imper.ai SSO dialog, select Microsoft as your identity provider. imper.ai displays two values to register the application in Entra:
Copy the Entity ID.
Copy the Reply URL.
In the Microsoft Entra admin center, create a new Enterprise application (choose Create your own application) and open its Single sign-on > SAML settings.
In the Basic SAML Configuration section, paste the Entity ID into the Identifier (Entity ID) field and the Reply URL into the Reply URL (Assertion Consumer Service URL) field.
Back in imper.ai, click Continue.
Step 2: Add Identity Provider Metadata
Next, provide the metadata from your Entra application to imper.ai. Choose one of the two methods.
Option A: Upload the metadata XML file
In the Entra SAML settings, download the Federation Metadata XML file.
In imper.ai, select Metadata XML file upload and click Upload to import the
.xmlfile.
Option B: Enter the metadata manually
In imper.ai, select Manually add metadata and copy the following values from the Entra Set up / SAML Certificates section:
Login URL - for example,
https://login.microsoftonline.com/TENANT_ID/saml2Microsoft Entra Identifier - for example,
https://sts.windows.net/TENANT_ID/Certificate (Base 64) - paste the Base64 certificate
When finished, click Done to save the configuration.
NOTE
imper.ai accepts Entra metadata only as an uploaded XML file or as the three manually entered values above. There is no metadata URL option.