question

abhisaxena-6081 avatar image
0 Votes"
abhisaxena-6081 asked sikumars commented

How to setup Azure AD SAML SSO with Jenkins

Hello, I want to integrate my Jenkins Logins with Azure SAML SSO, please help me on this, that how can i do the same. Thanks, Abhi

azure-ad-saml-ssoazure-ad-single-sign-on
· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hello @abhisaxena-6081,
Just checking in to see if the below answer helped. If this answers your query, please don’t forget to click "Accept the answer" and Up-Vote for the same, which might be beneficial to other community members reading this thread. And, if you have any further query do let us know.
Thanks,

0 Votes 0 ·
sikumars avatar image
1 Vote"
sikumars answered

Hello @abhisaxena-6081,

Thanks for reaching out.

Please find following article for setting up Azure AD SSO with Jenkins, but this would use Oauth/OpenID protocol for SSO.

https://azure.microsoft.com/en-in/blog/jenkins-on-azure-from-zero-to-hero/
https://plugins.jenkins.io/azure-ad/

I am not sure if Jenkins does support SAML protocol based SSO? if so then refer this article to Add an application to your Azure Active Directory (Azure AD) tenant.

Note: If the application you are looking for is not in the gallery then you can select the link Create your own application and then under What are you looking to do with your application? choose Integrate any other application you don't find in the gallery

The following thirdparty article is worth checking out as it speaks about setting up Azure AD SSO: https://plugins.miniorange.com/saml-single-sign-on-sso-into-jenkins-using-azure-ad-as-idp#1549879878415-f44c9e7a-b962


Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

abhisaxena-6081 avatar image
0 Votes"
abhisaxena-6081 answered

Hello @sikumars-msft,

Thanks for prompt response!
here one issue is, we have our on-prem Jenkins server and we can’t move that on any cloud platform.
Hence, i am looking for proper Settings to ads my on-prem Jenkins to my Azure SSO.

Can please suggest something for that.

Thanks,
Abhi

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

sikumars avatar image
1 Vote"
sikumars answered abhisaxena-6081 commented

Thanks for the update.

Does Jenkins support SAML protocol based SSO, Could you please confirm? if so then you can refer this generic guidance for creating an Enterprise application entry in Azure AD for enabling SAML SSO.

You must have basic SAML Configuration data which is known as federation metadata info such as Sign-in URL , Reply URL and Identifier (Entity ID) of Jenkins application, which need to be added when you integrate with Azure AD for SSO.

In similar way, download azure AD's metadata file and update same on Jenkins side, once you have updated then you should customize Attributes to send to Jenkins Customizing claims issued in the SAML token for enterprise applications in Azure Active Directory.

The following third-party article is worth checking out as it speaks about setting up Azure AD SSO:
https://plugins.jenkins.io/saml/
https://github.com/jenkinsci/saml-plugin/blob/master/doc/CONFIGURE_AZURE.md

Hope this helpful.

Thanks,
Siva

· 2
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hi @abhisaxena-6081,

I am reaching out to you and see if you get a chance to review above information. Please let us know if this answer was helpful to you. If so, please remember to mark it as the answer so that others in the community with similar questions can more easily find a solution. Thanks !

0 Votes 0 ·

thanks for the follow up @sikumars-msft, i am working on this, will update ASAP. Thanks Again!

1 Vote 1 ·
NaveenChandraSekhara-0681 avatar image
0 Votes"
NaveenChandraSekhara-0681 answered sikumars commented

I have a quick question. What are the options for OnPrem Jenkins talking to Azure AD for authentication.
SAML as I see above.
How about Jenkins Azure AD plugin does work too?

· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Yes, A Jenkins Plugin that supports authentication & authorization via Azure Active Directory. More information : https://plugins.jenkins.io/azure-ad/


Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

0 Votes 0 ·