Migrating Enterprise Application's In Microsoft Entra ID

Customer success will contact you when it's time to delete your current configuration(DO NOT DELETE YOUR CURRENT ENTERPRISE APPLICATION)

Step-by-Step Guide to Onboarding Users with Microsoft Entra

1. Log in to Dune Security as an Admin via app.dune.security/login and go to app.dune.security/onboarding from the landing page. 
   • Click Step 1 “Set Up SSO and Onboarding” and follow the flow alongside the steps below
2. Access the Azure Portal:
   • Under "Azure services," select Microsoft Entra ID.
     1. Create a New Enterprise Application:
        • In the side navigation panel under Manage, select Enterprise applications and click New Application.
        • Enter Dune Security as the application name and click Create.
        • Assign Users and Groups:
          • Go to the Getting Started section. Select Assign users and groups and add the necessary users/groups.
        • Configure Single Sign-On (SSO):
          • Under Manage, select Single sign-on.
          • In the Azure portal, select SAML as the SSO method.
          • Complete Basic SAML Configuration:
          • Identifier (Entity ID): Copy from the Dune Security platform under "Application Details."
            • Reply URL (ACS URL): Copy from the same section.
              Sign-on URL: https://dune.security/login/
            • Add SAML Certificates:
              • Copy the App Federation Metadata URL from Azure. Paste it into the Dune Security platform under Identity Provider Details.
              • Click Submit in the Dune Security platform.
            • Attribute Statements: (Note: This has been updated)
              • givenname: user.givenname
              • surname: user.surname
              • emailaddress: user.mail
              • name: user.userprincipalname
              • email: user.mail
              • Unique User Identifier: user.mail
                 
        • Set Up SCIM Provisioning:
          • In Azure, go to Provisioning and click Get started.
            • Set Provisioning Mode to Automatic.
            • Enter the following credentials:
              • Tenant URL: https://scim.dunesecurity.io/scim/v2 (Note: This URL has changed)
                Secret Token: Use the token from the Dune Security platform under "SCIM Provisioning Details."
              • Click Test Connection. If successful, click Save.
            • Start Provisioning:
              • Click Start provisioning in Azure, or Restart provisioning if it's grayed out.
                Review Provisioning logs to confirm success.