MicroStrategy ONE

This page applies to MicroStrategy 2021 Update 6 and newer versions.

Enabling SAML Single Logout for Azure

Starting in MicroStrategy 2021 Update 6, you can enable SAML single logout for Azure for the following products:

See Upgrade SAML Framework to v5.6.3 for more information.

MicroStrategy Web/Mobile Server

Before following this procedure, SAML should already be configured. See Single Sign-On with SAML Authentication for JSP Web and Mobile and Integrating SAML Support with Azure AD for more information.

  1. Generate SAML config file that enable global logout mode.

    1. Open the SAML config page:

      MicroStrategy Web: https://<FQDN>:<port>/MicroStrategy/saml/config/open

      Mobile Server: https://<FQDN>:<port>/MicroStrategyMobile/saml/config/open

    2. Choose a Logout mode of Global.

    3. Enter any other necessary information and click Generate config.

  2. Enable the application to initiate single logout using the Azure console.

    1. Open the Azure console and in the Single sign-on tab, edit the Basic SAML Configuration.

    2. Add the appropriate Logout Url.

      MicroStrategy Web: https://<FQDN>:<port>/MicroStrategy/saml/SingleLogout

      Mobile Server: https://<FQDN>:<port>/MicroStrategyMobile/saml/SingleLogout

    3. Save your changes, re-upload the new IDPMetadata.xml, and restart the Web server.

Library Web

  1. Enable the application to initiate single logout in the Azure console.

    1. Enter the necessary information in the Azure console as shown in Integrating SAML Support with Azure AD.

    2. Add the Logout Url:

      https://<FQDN>:<port>/MicroStrategyLibrary/saml/SingleLogout

    3. Save the configuration.

  2. Open Workstation and add the new environment connection to the Library server.

  3. Right-click the environment and choose Configure Enterprise Security > Configure SAML.

  4. On the Configure SAML dialog:

    1. Enter the Entity ID.

    2. Expand Advanced and General.

    3. Enter the Entity Base Url: https://<FQDN>:<port>/MicroStrategyLibrary

    4. Set the Logout Mode to Global.

    5. Click Generate Library SPMetadata.

    6. Upload IDPMetadata.xml. The file is downloaded from the Azure console.

    7. Click Complete Configuration.

  5. Restart the Library server.