Setting up automatic login with SAML
General information
The setup requires advanced knowledge of SAML 2.0, single sign-on and your identity provider.
Users who automatically receive a Nele.ai account via single sign-on are not automatically deleted or deactivated. These users can manually go to https://manage.nele.ai/users be deleted.
Login via SAML 2.0 can be requested via our contact form: https://www.nele.ai/en/contact. Your request will be processed and approved as quickly as possible.
If you have received feedback about the activation, the connection can be set up.
Identity provider settings
Create a new app with Microsoft Entra ID Microsoft Entra ID. Nutzen Sie dafür den with the “New application” button and then “Create your own application”.
![App-Erstellung bei Microsoft Entra ID](https://cdn.prod.website-files.com/65faa31274faf3040f02145e/66598b67f0c2bfb7d91b3064_661d38cc30858ecad3c5e21b_01-app-erstellen%25201.png)
Then choose an app name and “Integrate any other application you don't find in the gallery.”
![Einstellungen bei der App-Erstellung](https://cdn.prod.website-files.com/65faa31274faf3040f02145e/66598b671557cd36844e16f6_661d38193ffc8881c35b017e_02-custom-app-erstellen%25201.png)
Set the single sign-on method to “SAML”.
![Auswahl der SSO-Methode](https://cdn.prod.website-files.com/65faa31274faf3040f02145e/66598b67205cb2b2fe5bfc26_661d391529b66cc50d2da450_03-saml-sso%25201.png)
In the configuration below, first ignore steps 1 and 2, download the certificate “Certificate (Base64)” from step 3 and copy the Microsoft Entra Identifier and the login & logout URLs from step 4.
![Konfiguration von SSO](https://cdn.prod.website-files.com/65faa31274faf3040f02145e/66598b679e8a7d62c36eb2a7_661d395d2b64ea6ec1757ea2_04-konfiguration%25201.png)
nele.ai settings
Add the copied values to the nele.ai settings in the administration interface https://manage.nele.ai/sso one.
![](https://cdn.prod.website-files.com/65faa31274faf3040f02145e/668d3a3fb0aff959a7217298_sso-daten-eintragen.webp)
- IDP Entity ID — Microsoft Entry Identifier from step 4
- IDP login URL — login URL from step 4
- IDP logout URL — Logout URL from step 4
- IDP x509 certificate — Certificate (Base64) from step 3
You can then save the configuration in nele.ai and open the generated metadata XML for the Entra ID configuration.
![Fundort des entityID (URL)](https://cdn.prod.website-files.com/65faa31274faf3040f02145e/66598b958c657e996423c44f_661d343758dbad84ba66767d_07-metadata-xml.png)
In step 1, enter the identifier (entity ID) the value entityID (URL, ends in “/metadata”) and the “reply URL” (URL, ends in “/acs”).
In step 2, set the “Unique User Identifier (Name ID)” to “user.mail [nameid-format:emailAddress]”.
![Eintragen der EntityID und der Reply-URL](https://cdn.prod.website-files.com/65faa31274faf3040f02145e/66598b95408a2f35f258ccad_661d3445ea57f8067b5724b8_08-nameid-format.png)
Eine erfolgreiche Konfiguration können Sie über einen Link im Administrations-Bereich testen. Ist alles korrekt eingerichtet, werden Sie auf eine Übersichtsseite weitergeleitet, auf der Sie unter anderem wählen können, ob Sie sich in die Desktop-App oder die Web-App einloggen möchten. Alternativ können Sie dort nele.ai für verschiedene Betriebssysteme herunterladen.
![](https://cdn.prod.website-files.com/65faa31274faf3040f02145e/668d3bad39823a551fd33bed_login-mit-sso-links.webp)