The AD RMS Single Sign-on (SSO) Integration creates a client application that uses Auth0 for authentication and provides SSO capabilities for AD RMS. Your users log in to AD RMS with Auth0 identity providers, which means the identity provider performs the identity credentials verification.

Before you begin:

• Sign up for an AD RMS account.
• Set up a connection, which is a source of users. Connections can be databases, social identity providers, or enterprise identity providers, and can be shared among different applications. You may set up more than one connection for use with SSO integrations.

To configure a AD RMS SSO integration, you will:

1. Consent to Auth0 SSO integration
2. Configure Auth0 SSO integration
3. Configure integration with AD RMS
4. Enable connections

1. Navigate to Auth0 Dashboard > Applications > SSO Integrations, and click + Create SSO Integration.

2. Select AD RMS.

3. Click Continue to grant the integration access to the listed permissions.

Enter a name for your SSO Integration, configure the following settings, and click Save.

To configure the integration with AD RMS, follow the instructions listed in the Tutorial view.

Before you continue, make sure you have your SSO integration Client ID. You will use the Client ID to replace the SSO_CLIENT_ID placeholders.

1. Add Federation Support to your AD RMS Cluster

2. Enter your Auth0 RMS URL (be sure to replace the SSO_CLIENT_ID placeholder with the Client ID of your SSO Integration): YOUR_DOMAIN/rms/SSO_CLIENT_ID

Make sure you validate the URL to verify connectivity.

Choose the connections to use with your SSO integration. Users in enabled connections will be allowed to log in to AD RMS. By default, all configured connections are enabled.

1. Select the Connections view.

2. Toggle the sliders next to connection names to enable or disable them.