Configuration
- In the Azure Active Directory admin center, go to Enterprise applications → New application
- Select Create your own application (Forest is not in the gallery)
- Choose Integrate any other application you don’t find in the gallery (Non-gallery)
- Configure SAML settings:
| Setting | Value |
|---|---|
| Reply URL (ACS URL) | https://api.forestadmin.com/api/saml/callback |
| Sign on URL | https://api.forestadmin.com/api/saml/callback |
| Identifier (Entity ID) | forestadmin-YourOrganizationName |
| Logout URL (optional) | https://app.forestadmin.com/login |
| Relay State (optional) | {"organizationName": "YourOrganizationName", "destinationUrl": "organization.projects"} |
- In the SAML Signing Certificate section, copy the App Federation Metadata Url
- In Forest Organization settings, select XML file endpoint and paste the URL
Troubleshooting
- Double-check all endpoints and certificate expiration dates
- Ensure
nameIDis configured to use the email address used on Forest accounts