Open your AD FS Management from Tool. 

1. Configure Relying Party Trust.

Click on Relying Party Trusts and then click on Add Relying Party Trust.. from Actions. Click Start to configure.

a. Select Data Source
choose Enter data about the relying party manually option and click Next. 

b. Specify Display Name
Enter Display name and click Next.

c. Configure Certificate
Leave as it is and click Next.

d. Configure URL
Choose Enable support for the SAML 2.0 Web SSO protocol
for Relying party SAML 2.0 SSO service URL paste your AlertOps domain URL.
https://{Client}.alertops.com/login.aspx
Please replace Client with your respective AlertOps domain/account.

e. Configure Identifiers
for Relying party trust identifier paste your AlertOps domain URL and then Add button will be enabled, click it.
https://{Client}.alertops.com
Please replace Client with your respective AlertOps domain/account.
Then Next Button will be enabled, click it.

f. Choose Access Control Policy
Permit everyone
Leave as it is and click Next.

g. Ready to Add Trust
Review your settings and click Next.

h. Finish
On successful message click Close.

 2. Configure Claims Issuance Policy


Go to Relying Party Trusts right click on the Trust you just created and click Edit Claim Issuance Policy..

Click Add Rule

a. Select Rule Template
Select Send LDAP Attributes as Claims as Claim rule template and click Next.


b. Configure Rule
Give a Claim rule name, select Active Directory from Attribute Store. Under Mapping select E-mail Address on both LDAP Attribute and Outgoing Claim type and click Finish.

Click Add Rule Again

a. Select Rule Template
Select Transform an Incoming Claim as Claim rule template and click Next.

b. Configure Rule
Give a Claim rule name, select E-Mail Address as Incoming claim type,
 Name ID as Outgoing claim type and Email as Outgoing name ID format.
Choose Pass through all claim values and click OK.

Click Apply and OK.
Please note that the order of these Rules is important.

3. Get the Certificate

Go to Certificates in Service, right click on the Token-signing certificate and click View Certificate.

Click Copy to File and click ok.

Choose Base-64 encoded x.509 (.CER) and click Next

Browse the desired location and click Next.

You should see the successful export of the certificate and click Finish.

4.  SSO configuration in AlertOps

Go to Account Settings in Alertops and then click SSO tab

Use Single Sign-On (SSO): Enable
SSO Provider: Other
Issuer URL: https://client.alertops.com  (client is your AlertOps domain)
SAML endpoint URL: AD FS URL
https://ADFSaccount.com/adfs/ls
(ADFSaccount.com is SAML 2.0/W-Federation' URL in the ADFS Endpoints)
SAML Signature Algorithm: SHA256
X 509 Certificate: Certificate you downloaded previously

Did this answer your question?