Microsoft Azure

Bugcrowd offers a Security Assertion Markup Language (SAML) based Single Sign-On (SSO) integration with Microsoft Azure to help you create an easy and centralized way to log in to Crowdcontrol. This section provides the steps to configure Microsoft Azure.

Specific Role Required to Configure SSO: To configure SSO for your program, you must be an Organization Owner. Organization Owners can log in using Username and Password.

Adding Bugcrowd to Your Microsoft Azure Portal

  1. Log in to the Microsoft Azure Portal.

  2. Click Microsoft Entra ID (Previously Azure Active Directory).

    Microsoft Entra ID

  3. Click Enterprise Application.

    Click Enterprise Application

  4. Click New application.

    Click New Application

  5. Click Create your own application.

  6. Provide the name of your app, select Integrate any other application you don’t find in gallery (Non-gallery) and click Create.

    Click Create Your Own Application

  7. Next, click *Get started in the Set up single sign on box.

    Setup SSO

    The Setup with Single Sign On SAML page is displayed

  8. Click SAML.

    Click SAML

  9. In the Basic SAML Configuration section, click Edit and provide the following:

    • Identifier (Entity ID): Paste the SP Entity ID from your Bugcrowd account.
    • Reply URL (Assertion Consumer Service URL): Paste the Single sign on URL from your Bugcrowd account.

    SAML settings in Azure

  10. Save your changes.

Mapping Microsoft Azure to Crowdcontrol

  1. Make a note of the following information:

    • Azure AD Identifier
    • Login URL
    • Security Certificate (Download the base64 certificate)

    SAML Signing Certificate in Azure

  2. Download the Certificate (Base64) file from Azure.

    Download certificate (Base64)

  3. Navigate to the Single Sign-On screen in Crowdcontrol and scroll to the SAML Settings section.

  4. Copy the following information from Azure:

    • IdP Entity ID: Paste the Microsoft Entra ID Identifier information URL from Azure.
    • IdP SSO Target URL: Paste the Login URL from Azure.
  5. Copy the contents of the file and paste them into the idP Certificate

    Crowdcontrol SAML Settings

  6. Click Save authentication settings.

    Domain verification is required for SSO to function properly. For more information, see verifying domain.

  7. (Optional) Test single sign-on.

    Test single sign-on

Logging into Crowdcontrol Using SSO

After you have successfully enabled SSO, your team members members will be logged into Crowdcontrol via SAML.

If SSO is not working, remove the URL from the Single-Sign On optional field under Basic SAML Configuration settings for Bugcrowd app in Microsoft Azure.

Account Management
Security Program Management
Engagement Management
Submission Management
Integration Management