Set Up Azure AD with Alteryx Platform

Last modified: September 20, 2021

Docs are available before the release of Designer Cloud so you can get a sneak peek. This content might change between now and the official release.

Learn how to configure Azure AD with the Alteryx platform.

You need admin access to both Azure AD and the Alteryx platform to set up this configuration.

To complete this configuration, you have to follow these steps:

  1. Create the configuration in the Alteryx platform.
  2. Add the Alteryx platform as an app in Azure AD.
  3. Map attributes in Azure AD.
  4. Complete the configuration in the Alteryx platform.

Because you have to perform actions in both the Alteryx platform and in Azure AD, we recommend that you open them in  separate tabs in your browser before you begin the configuration process.

1. Create Identity Provider (IdP) Configuration

  1. Sign into the Alteryx platform as admin.
  2. Go to Admin Single Sign-On.
  3. Enter the name of your IdP into Identity Provier Name. The name displays in the SSO button on the sign-in screen.
  4. Copy these values so you can paste them into Azure AD:
    • Entity ID
    • Assertion Customer Service URL

2. Add the Alteryx Platform as an App in IdP

  1. Sign in to Azure Portal as an admin.
  2. Go to Azure Active Directory.
  3. From Manage, select Enterprise Applications.
  4. Select New application > Create your own application.
  5. In What's the name of your app?, enter the name of your application. We recommend "Alteryx Platform" for the name.
  6. Select Integrate any other application you don't find in the gallery (non-gallery).
  7. Select Create.
  8. From Manage, select Single sign-on.
  9. For the single sign-on method, select SAML.
  10. For Basic SAML Configuration, select Edit.
  11. In Identifier (Entity ID), paste the entity ID you previously copied from the Alteryx platform. Make sure to check the Default box.
  12. In Reply URL (Assertion Consumer Service URL), paste the assertion consumer service URL you previously copied from the Alteryx platform. Make sure to check the Default box.
  13. In Sign on URL, paste your application's base URL: https://{COMPANY_NAME}.alteryxcloud.com.
  14. In Relay State, paste your application's base URL: https://{COMPANY_NAME}.alteryxcloud.com.
  15. In Logout URL, paste the assertion consumer service URL you previously copied from the Alteryx platform.
  16. Select Save.

3. Map Attributes in IdP

You have to create 3 claims in Azure AD:

  1. Email
  2. 1st Name
  3. Last Name

Go to User Attributes & Claims.

Email

  1. Select Add New Claim.
  2. In Name, enter email.
  3. From Source Attribute, select user.mail.
  4. Select Save.

1st Name

  1. Select Add New Claim.
  2. In Name, enter firstName.
  3. From Source Attribute, select user.givenname.
  4. Select Save.

Last Name

  1. Select Add New Claim.
  2. In Name, enter lastName.
  3. From Source Attribute, select user.surname.
  4. Select Save.

TIP

To keep your setup tidy, consider removing unused claims.

4. Complete IdP Configuration

  1. In Azure AD, go to SAML Signing Certificate. 
  2. Copy the App Federation Metadata URL value.
  3. In the Alteryx platform, select Import IdP Metadata from URL.
  4. Paste the URL you copied into IdP Metadata URL.
  5. Set HTTP-POST Binding for AuthnRequest to on to use HTTP POST Binding instead of HTTP Redirect Binding when requesting authentication from the SAML IdP.
  6. Set HTTP-POST Binding Response to on to use HTTP Post Binding instead of HTTP Redirect Binding when responding to requests sent by the SAML IdP.
  7. Select Test. If a connection has been successfully established, a green checkmark should appear.
  8. Select Save.
Was This Page Helpful?

Running into problems or issues with your Alteryx product? Visit the Alteryx Community or contact support. Can't submit this form? Email us.