SSO setup - Azure AD (SAML2.0)


Splashtop supports logging into and Splashtop Business app using the same credentials as your SAML 2.0 identity provider. Please follow the below instructions to get the app from Azure AD console.

Get the app on Azure AD console

1. Log in Azure AD console. Select an Azure AD Directory, or create a new one.

2. Click Enterprise applications under Manage menu.

3. Click "+ New application".


4. Search Splashtop from the gallery then add.


5. After adding the app, select Set up single sign on, then select SAML.


6. Edit Basic SAML configuration.
Identifier (Entity ID):
Reply URL (Assertion Consumer Service URL)
Sign on URL: 
(There are patterns under each three field which you can copy then paste to the corresponding fields.)
Leave others without changes.

7. Edit User Attributes & Claims.
Unique User Identifier: user.mail
Leave others without changes.

8. Done!


***For IdP initiated, please add a relay state and modify Unique User Identifier following below screenshot

Add user/group to the created app

Click Add user to add users to the created enterprise application so the user can use SSO feature.


Apply for an SSO method from

Now you have the Login URL, Azure AD Identifier, and Download Certificate (Base64). 

Please follow below instruction to insert the info on our web portal ( to apply for enabling the SSO with Azure AD.


After downloading Certificate (Base64), please edit the cert file with a text editor, then copy the contents to insert on


If interested you can provision with SCIM for Azure.

See this article: Provisioning setup - Azure AD (SCIM)

1 out of 1 found this helpful