Neodeluxe SSO Application

  • Updated

How to Create and Configure an SSO Application

Neodeluxe SSO is a secure login option that allows law firms to access the portal with just one click, without needing to enter a username or password. To enable this feature, firms must first complete a one-time setup process linking their system with Neostella’s. 

This article teaches you how to complete the client-side setup for SSO. This setup has two main parts: 

  1. The client-side setup, done by your team.
  2. The internal setup, handled by Neostella.

This guide focuses on your part of the process. To do so, please follow these steps:

  • Step 1: Create the SSO Application
  • Step 2: Configure the Application
  • Step 3: Basic SAML Configuration
  • Step 4: Configure Attributes & Claims
  • Step 5: Share SAML Certificates
  • Final Step: Notify Neostella

Step 1: Create the SSO Application

If this is the first time your firm is setting up SSO with Neostella, admins will need to create a new application in Microsoft Azure environment. Here’s how:

1. Sign in to your Microsoft Azure portal.
2. Click Manage and go to Enterprise Applications.
3. Select + New application.
4. Click + Create your own application.
5. Enter a custom name for your application.
6. Select Integrate any other application you don’t find in the gallery (Non-gallery).
7. Click Create.
 Once created, the app will appear under All Applications, and admins will be able to configure it.

Please share the exact name of the application with the Neostella team so we can identify it correctly.

Step 2: Configure the Application

Now that your application is created, follow these steps to complete the initial setup:

1. Go to Home > Enterprise Applications.
2. Locate the application in the list and click on it.
3. Select Set up single sign-on.
4. Select the SAML option.
5. Now, admins will configure the following sections:

  • Basic SAML Configuration
  • Attributes & Claims
  • SAML Certificates

Step 3: Basic SAML Configuration

Before beginning step 3, request the following information from Neostella at help@neostella.com :

  • Identifier (Entity ID)
  • Reply URL (Assertion Consumer Service URL)

This section is critical to ensure the application connects properly. Make sure the values match exactly what Neostella provides.

1. Click the Edit button in the Basic SAML Configuration section.
2. Add the identifier:

  • Click Add Identifier.
  • Enter the Identifier (Entity ID)
  • Check the Default box.

3. Add the Reply URL:

  • Click Add Reply URL.
  • Enter the Reply URL (Asserion Consumer Service URL).
  • Check both the Index and Default boxes.

4. Click Save.

Step 4: Configure Attributes & Claims

In this step, admins will define the identity information that will be passed between your application and Neostella during the login process. This determines what user data is shared and how it’s formatted. It’s important to set the required values accurately and review the default claims to ensure everything aligns with Neostella’s expected structure.

1. In the Attributes & Claims section, click Edit.
2. Set the Required Claims

  • Unique User Identifier (Name ID): user.mail
  • Click on the Claim name field.
  • Set the Name identifier format to Unspecified.
  • Set the Source attribute to user.mail

3. Review the Additional Claims: These should remain unchanged. Ensure the following are present:

  • EmailAddress → user.mail
  • GivenName → user.givenname
  • Name → user.userprincipalname
  • Surname → user.surname

Step 5: Share SAML Certificates

SAML Certificates help establish a secure connection between the admin system and ours. You can share them in one of two ways:

  • Option 1: Copy the Metadata URL (Recommended)

This method is faster and updates automatically.

1. Locate the App Federation Metadata URL field.
2. Copy the link and send it to the Neostella team at help@neostella.com

  • Option 2: Download and Send the Certificate File

This method is more secure but requires manual updates each time changes are made.

1. Find the Federation Metadata XML field.
2. Click Download.
3. Send the downloaded file to the Neostella team at help@neostella.com

Final Step: Notify Neostella

Once admins have completed the configuration, let the Neostella team know at help@neostella.com so we can finalize the internal setup.

To speed up the process and prevent misconfigurations, please send screenshots of the following sections:

  • Basic SAML Configuration
  • Attributes & Claims
  • SAML Certificates

This helps our team validate your setup before proceeding with the internal configuration.

Was this article helpful?

0 out of 0 found this helpful

Comments

0 comments

Please sign in to leave a comment.