Updating existing Azure AD to Infor CloudSuite federations

  1. Log on to the Infor CloudSuite tenant portal with an administrator account with Cloud Identities authentication.
  2. Click an account name (person icon in the top right) to populate from the user menu.
  3. Select User Management from the User Menu options.
  4. Click the Security Administration drop-down and select Federated Security.
  5. Expand Federated Security and click the edit icon for the Azure federation.
  6. Make notes of any Sign Authentication request, Accept Encrypted Assertions, Logoff, Assertion Identity Key, and IFS user lookup field settings.
  7. Select the WS-Trust tab. If enabled, make note of the STS Name, SOAP Version, WS-Trust Version, Service Endpoint, and Client Authentication from the settings, and confirm if the No Tokentype check box is selected.
  8. Select the Azure AD Active Mode tab. If enabled, make note of the Azure AD token end point, Client ID, Scopes, and Look up value settings, and confirm if the IFS user lookup field is selected. The Client Secret value is not viewable. See original notes on initial activation for the value used. If that value is not available, then generate a new client secret in Azure AD for the registered application with the same Client ID on the Azure AD Active Mode tab.
  9. Click the back arrow beside Federated Security at the top of the page.
  10. Access the Azure portal and open the Infor CloudSuite enterprise application.
  11. From the Application Home page, select Single sign-on from the Manage menu.
  12. Navigate to the SAML Signing Certificate section and click the download link beside Federation Metadata XML to download the Azure AD metadata file.
  13. Navigate to the Infor CloudSuite portal and select the Azure federation check box. Click the delete icon. Click Yes on the Delete Items confirmation message.
  14. See Downloading the Infor CloudSuite metadataand Adding Azure AD configuration to Infor CloudSuite to re-create the federation within Infor CloudSuite using InforSTS and to download the Infor CloudSuite metadata to be used by Azure AD. Review your notes on federation settings as they may differ from what is outlined in those sections. Ensure to maintain original federation settings.
  15. Configure the Azure AD Active Mode tab, if required, with the values saved previously.
  16. Navigate to the Azure portal and the Infor CloudSuite enterprise application.
  17. Click Upload metadata file, select the ServiceProviderSAMLMetadata_MM_DD_YYYY.xml file downloaded in previous steps. Click Add.
  18. Under Basic SAML Configuration, click Save and close the section.
  19. Click No, I’ll test later on the test single sign-on message. Federation updating is now complete.
  20. After the federation has been updated using InforSTS, validate authentication through Azure to the Infor CloudSuite portal.