IT Set-up
      Back to home
      1. Help Centre
      2. IT Set-up

      Single Sign-On (SSO) for Microsoft/Azure Schools

      Learn how to configure Microsoft/Azure with Wellio for Single Sign On.

      This process is divided into four phases:

      Step 1: Request Entity ID & Reply URL details

      1. Visit the Azure portal
      2. Under the Azure Services header, click Enterprise Applications.
      3. Click New Application.
      4. Click Create your own application.
      5. Use "Wellio" as the application name and select the Non-gallery radio button option.

      Next, you will need to request the following details from us before proceeding further:

      • Entity ID (Identifier) URL
      • Reply URL

      ✉️ Click here to send an automatic email to request these details.

       You will receive the required URLs to proceed with your setup.

      Step 2: Enter Configuration Details

      Once you receive the URLs, continue with the following steps:

      • Download the Federation Metadata XML file shown below:azure1
      • Send an email to us with:
        • The Federation Metadata XML file attached.
        • Test account details: Include the email address & password for a test account to be provisioned in Wellio. The test account should use a student school-affiliated email address.

      ✉️ Click here to start an emaildon’t forget to attach the XML file!

      Note: Our team will use this information to configure your setup. You can expect a response within a 1-2 business days with the details needed to proceed with the secondary steps outlined below.

      Step 3: Complete SAML Configuration

      Once you've received the Entity ID and Reply URL from us and provided your metadata XML file, continue with the configuration.

      1. In the Basic SAML Configuration section:
        • Set the Identifier (Entity ID) to the URL provided by Wellio.
        • Set the Reply URL to the URL provided by Wellio.
      2. In the User Attributes and Claims section:
        • Set the Required claim to match the following:azure2
        • Set Additional claims to match the layout shown in the first image. As you edit each claim, delete the content of the Namespace field as shown in the second image:azure3azure4
        • Set Assignment required? to NO in the Properties tab.

      Final Step: Testing the Configuration

      Once you've completed the secondary steps above, please let us know.

      ✉️ Click here to send an email to notify us that you're ready for testing

      We'll use the test account credentials you've provided in Step 2 to verify the configuration is working as expected before setting SSO live for your school.

       

      User Matching for existing users (if needed)

      If your school previously used Wellio without SSO, existing accounts must be correctly linked to email addresses before activation. We’ll match accounts where possible and provide a list of any unmatched accounts for you to confirm.

      After configuration testing, we’ll be in touch if user matching is needed and provide simple instructions to complete the process for a smooth SSO transition.