Configure Microsoft Active Directory Federation Services SSO

Skip to main contentOpsgenie Cloud

Documentation

• Get started with Opsgenie as a user
  • Learn how to use Opsgenie as a user
    • Configure your profile
    • View your on-call schedule
    • View who is on-call
    • How to get your first alert notification
    • Manage alerts through their lifecycle
    • Track user events
  • Get started with Opsgenie as a stakeholder
• Get started with Opsgenie as an admin
  • Understand the basic admin tasks in Opsgenie
    • Welcome to Opsgenie
    • Read Opsgenie's Quickstart guide
    • Get Opsgenie ready to receive alerts
  • Invite users and manage their roles
    • Add, invite, update, and delete users
    • Learn user roles and permissions
    • Search syntax for users
  • Learn about Opsgenie's integrations
    • Set up an integrated tool
  • Create and manage teams
    • What are teams in Opsgenie?
    • Create a team and add members
    • Configure a team dashboard
  • Build and manage on-call schedules
    • Build an on-call schedule
    • How do escalations work in Opsgenie?
    • Manage on-call schedules and rotations
    • Create an on-call schedule with a daily rotation
    • Create an on-call schedule with weekday/weekend rotation
    • Create an on-call schedule with business and off-hours
    • Override an on-call schedule
• Make an informed migration decision
  • Plan your Opsgenie migration and schedule your date
    • What to expect from Opsgenie migration?
    • What are my options for migrating from Opsgenie?
    • Set up a migration demo account to test migration
    • Schedule an Opsgenie migration
  • Understand your post-migration tasks
    • Prepare for data migration after scheduling your date
    • What is the migration guide and how to use it
    • Get started with Opsgenie migration as an admin
    • Managing operations in Compass and Jira Service Management at the same time
    • What happens when Opsgenie is turned off?
    • How to manually turn off Opsgenie when ready
  • Migrate Opsgenie when working with an Atlassian partner
    • How migration changes when working with an Atlassian partner
  • Common migration challenges and how to manage them
    • Review and approve billing for Opsgenie migration
    • What to do if Opsgenie migration billing is rejected or expired
    • Why you can’t schedule your Opsgenie migration?
• Migrate Opsgenie to Jira Service Management
  • What changes when you migrate to Jira Service Management
    • Feature changes and deprecations in Jira Service Management
    • How to switch Opsgenie phone numbers to Twilio
    • Understanding Opsgenie integration changes
• How Opsgenie features change after migration
  • Alerts after migration
  • On-call schedules after migration
  • Incident management after migration
  • Services after migration
  • Integrations after migration
  • Alert actions and policies after migration
  • Analytics and reporting after migration
  • Alert notifications after migration
  • Teams after migration
  • Advanced alert configurations after migration
  • Maintenance after migration
  • Incoming call routing after migration
  • Access management after migration
  • Stakeholder management after migration
  • Data encryption after migration
  • Support coverage after migration
  • Opsgenie mobile app after migration
• Learn how Opsgenie works
  • Supported platforms, time zones, and other references
    • Supported countries for sending SMS and voice calls
    • Integration, OEC, SDK, Android and other download files
    • Outbound traffic static IP list
    • Troubleshoot connectivity issues
    • Time constraints and time zones
    • Supported time zone IDs
    • Supported locale IDs
    • Search logs
    • Supported web browsers
    • What are the limitations of the Essentials plan?
    • Checks to do after an Opsgenie site name change
    • Inbound traffic static IP list
  • Opsgenie's data residency
    • European service region
    • Opsgenie data residency
• Manage your alerts in Opsgenie
  • Learn about alert management in Opsgenie
    • Navigate the alerts list
    • Search queries for alerts
    • Alert creation flow
    • Alert fields
    • Alert notifications flow
    • What is alert de-duplication?
    • Who are alert responders?
    • Update alert priority level
  • Manage alert lifecycle with alert actions
    • How to use alert actions
    • Acknowledge and unacknowledge an alert
    • Snooze an alert
    • Escalate an alert
    • Close and delete an alert
    • Add a responder to an alert
    • Add a note or attachment to an alert
    • Assign an owner to an alert
    • Set up a custom action for an alert
    • Update an alert's message
    • Update an alert's description
    • Perform bulk actions on alerts
    • Use alert callbacks
  • Create alert policies to control the notification flow
    • Create and manage global alert policies
    • Create and manage team policies
    • Create and manage maintenance policies
    • Create and manage notification preferences
    • Create a central notification template
    • Add a forwarding rule
    • Send voice and SMS notifications
    • Migrate to new alert and notification policies (Deprecated)
    • How to set alert policies (Deprecated)
  • Increase security by encrypting your alert data
    • What is Edge Encryption?
    • Encrypt your alert data with Edge Encryption
• Integrate Opsgenie with your IT tools
  • Learn how to use Opsgenie's integration framework
    • What are the integration types and actions?
    • What is the ITSM integration flow with Zendesk?
    • Use advanced integration settings
    • Action filters in Opsgenie integrations
    • Dynamic fields in Opsgenie integrations
    • String processing methods in Opsgenie integrations
    • Regular expressions for customizing and filtering alerts
    • HipChat user mapping in Opsgenie
    • Set the priority level of alerts created with integrations
    • The integration framework
  • Integrate Opsgenie with other Atlassian products
    • Integrate Opsgenie with Bitbucket
    • Integrate Opsgenie with Jira Cloud
    • Integrate Opsgenie with Jira
    • Integrate Opsgenie with Jira via AWS Lambda
    • Integrate Opsgenie with Jira Service Management
    • Integrate Opsgenie with another Opsgenie
    • Integrate Opsgenie with Statuspage
    • Integrate Opsgenie with Bamboo
    • Integrate Opsgenie with Jira Service Management Cloud
  • Integrate Opsgenie with your tools
    • Integrate Opsgenie with Airbrake
    • Integrate Opsgenie with Outgoing Amazon SNS
    • Integrate Opsgenie with BMC FootPrints v11
    • Integrate Opsgenie with BMC FootPrints v12
    • Integrate Opsgenie with BMC Remedy
    • Integrate Opsgenie with Remedyforce
    • Integrate Opsgenie with BMC TrueSight
    • Integrate Opsgenie with Catchpoint
    • Integrate Opsgenie with Cherwell
    • Integrate Opsgenie with Dynatrace Integration
    • Integrate Opsgenie with Dynatrace Webhook (v2)
    • Integrate Opsgenie with Dynatrace AppMon
    • Integrate Opsgenie with Icinga
    • Integrate Opsgenie with Icinga2
    • Integrate Opsgenie with Kayako
    • Integrate Opsgenie with LibreNMS
    • Integrate Opsgenie with LogicMonitor
    • Integrate Opsgenie with Logstash
    • Integrate Opsgenie with Microsoft Azure Event Hubs
    • Integrate Opsgenie with Microsoft Azure OMS
    • Integrate Opsgenie with Nagios Plugin
    • Integrate Opsgenie with Lamp Based Nagios (Deprecated)
    • Integrate Opsgenie with Nagios XI Plugin
    • Integrate Opsgenie with Lamp Based NagiosXI
    • Integrate Opsgenie with New Relic (Legacy)
    • Integrate Opsgenie with ITRS OP5 Monitor
    • Integrate Opsgenie with Opsview
    • Integrate Opsgenie with Oracle Enterprise Manager
    • Integrate Opsgenie with Pingdom Server Monitor
    • Integrate Opsgenie with PRTG
    • Integrate Opsgenie with Rackspace Cloud Monitoring
    • Integrate Opsgenie with Rollbarx
    • Integrate Opsgenie with Runscope
    • Integrate Opsgenie with Salesforce Service Cloud
    • Integrate Opsgenie with SaltStack
    • Integrate Opsgenie with Scalyr
    • Integrate Opsgenie with Sematext
    • Integrate Opsgenie with Sensu
    • Integrate Opsgenie with Sentry
    • Integrate Opsgenie with Server Density
    • Integrate Opsgenie with ServerGuard24
    • Integrate Opsgenie with ServiceNow
    • Integrate Opsgenie with SignalFx
    • Integrate Opsgenie with SignalFx (Legacy)
    • Integrate Opsgenie with Signal Sciences
    • Integrate Opsgenie with Site24x7
    • Integrate Opsgenie with Slack
    • Integrate Opsgenie with SOASTA
    • Integrate Opsgenie with Solarwinds NPM
    • Integrate Opsgenie with N-ABLE N‑central RMM
    • Integrate Opsgenie with Solarwinds Web Help Desk
    • Integrate Opsgenie with Splunk
    • Integrate Opsgenie with Splunk IT Service Intelligence
    • Integrate Opsgenie with Stackdriver
    • Integrate Opsgenie with StackStorm
    • Integrate Opsgenie with StatusCake
    • Integrate Opsgenie with StatusHub
    • Integrate Opsgenie with Status.io
    • Integrate Opsgenie with Statusy
    • Integrate Opsgenie with StruxureWare Data Center Expert
    • Integrate Opsgenie with Sumo Logic
    • Integrate Opsgenie with Sysdig Cloud
    • Integrate Opsgenie with ThousandEyes
    • Integrate Opsgenie with Threat Stack
    • Integrate Opsgenie with Thundra
    • Integrate Opsgenie with Tideways
    • Integrate Opsgenie with Trace
    • Integrate Opsgenie with Track-It!
    • Integrate Opsgenie with Travis CI
    • Integrate Opsgenie with Twilio
    • Integrate Opsgenie with Updown.io
    • Integrate Opsgenie with Uptime.com
    • Integrate Opsgenie with Uptime Cloud Monitor
    • Integrate Opsgenie with UptimeProject
    • Integrate Opsgenie with Uptime Robot
    • Integrate Opsgenie with Uptrends
    • Integrate Opsgenie with SolarWinds DPM
    • Integrate Opsgenie with VMware Center
    • Integrate Opsgenie with VMware vCenter Server Appliance
    • Integrate Opsgenie with Wavefront
    • Integrate Opsgenie with WhatsUp Gold
    • Integrate Opsgenie with Workato
    • Integrate Opsgenie with XL Release
    • Integrate Opsgenie with X-Pack (Elasticsearch Watcher)
    • Integrate Opsgenie with XMPP/Jabber
    • Integrate Opsgenie with Zabbix
    • Integrate Opsgenie with Zabbix Plugin
    • Integrate Opsgenie with Zapier
    • Integrate Opsgenie with Zendesk
    • Integrate Opsgenie with Zenoss
    • Integrate Opsgenie with Zyrion
    • Integrate Opsgenie with CloudMonix
    • Integrate Opsgenie with Amazon EventBridge
    • Integrate Opsgenie with Amazon Security Hub
    • Integrate Opsgenie with Amazon SNS
    • Integrate Opsgenie with Apica Synthetic Monitoring
    • Integrate Opsgenie with APImetrics
    • Integrate Opsgenie with AppDynamics
    • Integrate Opsgenie with AppOptics
    • Integrate Opsgenie with AppSignal
    • Integrate Opsgenie with Atatus
    • Integrate Opsgenie with Autotask
    • Integrate Opsgenie with Autotask AEM
    • Integrate Opsgenie with BigPanda
    • Integrate Opsgenie with Blue Matador
    • Integrate Opsgenie with CA Flowdock Chat
    • Integrate Opsgenie with CA Flowdock Team Inbox
    • Integrate Opsgenie with Campfire
    • Integrate Opsgenie with Checkmk
    • Integrate Opsgenie with CircleCI
    • Integrate Opsgenie with Circonus
    • Integrate Opsgenie with CloudSploit
    • Integrate Opsgenie with CloudWisdom (Netuitive)
    • Integrate Opsgenie with Codeship
    • Integrate Opsgenie with Compose
    • Integrate Opsgenie with ConnectWise Automate (API)
    • Integrate Opsgenie with ConnectWise Automate (Email)
    • Integrate Opsgenie with ConnectWise Manage
    • Integrate Opsgenie with Consul
    • Integrate Opsgenie with Coralogix
    • Integrate Opsgenie with Crashlytics
    • Integrate Opsgenie with Datadog
    • Integrate Opsgenie with Desk.com
    • Integrate Opsgenie with Detectify
    • Integrate Opsgenie with DNS Check
    • Integrate Opsgenie with DripStat
    • Integrate Opsgenie with Errorception
    • Integrate Opsgenie with Evident.io
    • Integrate Opsgenie with Flock
    • Integrate Opsgenie with Freshdesk
    • Integrate Opsgenie with Freshservice
    • Integrate Opsgenie with Ghost Inspector
    • Integrate Opsgenie with GitHub
    • Integrate Opsgenie with GitLab
    • Integrate Opsgenie with Google Cloud's operations suite
    • Integrate Opsgenie with Grafana
    • Integrate Opsgenie with Graylog (Plugin)
    • Integrate Opsgenie with Graylog v3 and above
    • Integrate Opsgenie with Honeybadger
    • Integrate Opsgenie with Honeycomb
    • Integrate Opsgenie with Hosted Graphite
    • Integrate Opsgenie with Humio
    • Integrate Opsgenie with IBM Tivoli Netcool
    • Integrate Opsgenie with Incoming Amazon SNS
    • Integrate Opsgenie with Instana
    • Integrate Opsgenie with Jenkins
    • Integrate Opsgenie with Kapacitor
    • Integrate Opsgenie with Kore
    • Integrate Opsgenie with Lightstep
    • Integrate Opsgenie with Logentries
    • Integrate Opsgenie with Loggly
    • Integrate Opsgenie with Logz.io
    • Integrate Opsgenie with Looker
    • Integrate Opsgenie with Loom
    • Integrate Opsgenie with Magentrix
    • Integrate Opsgenie with ManageEngine
    • Integrate Opsgenie with Mattermost
    • Integrate Opsgenie with Microsoft Azure AutoScale
    • Integrate Opsgenie with Microsoft Azure Resource Health
    • Integrate Opsgenie with Microsoft Azure Service Health
    • Integrate Opsgenie with Microsoft SCOM
    • Integrate Opsgenie with Microsoft Teams
    • Integrate Opsgenie with Microsoft Teams V2
    • Integrate Opsgenie with MongoDB Cloud Manager
    • Integrate Opsgenie with Monit
    • Integrate Opsgenie with Monitis
    • Integrate Opsgenie with Moxtra
    • Integrate Opsgenie with Netdata
    • Integrate Opsgenie with Neustar
    • Integrate Opsgenie with New Relic Workflows
    • Integrate Opsgenie with NodePing
    • Integrate Opsgenie with Observium
    • Integrate Opsgenie with OpsDash
    • Integrate Opsgenie with Outlyer
    • Integrate Opsgenie with Panopta
    • Integrate Opsgenie with Papertrail
    • Integrate Opsgenie with Pingdom
    • Integrate Opsgenie with Pingometer
    • Integrate Opsgenie with Prometheus
    • Integrate Opsgenie with Raygun.io
    • Integrate Opsgenie with RedGate SQL Monitor
    • Integrate Opsgenie with Remedy OnDemand
    • Integrate Opsgenie with Riemann
    • Integrate Opsgenie with Rigor
    • Integrate Opsgenie with RingCentral
    • Integrate Opsgenie with RingCentral Glip
    • Configure Amazon action channels after data residency moves
    • Integrate Opsgenie with Microsoft Active Directory
    • Integrate Opsgenie with Munin
    • Integrate Opsgenie with Nagios
    • Integrate Opsgenie with Nagios XI
    • Integrate Opsgenie with OpenNMS
    • Integrate Opsgenie with Planio
    • Integrate Opsgenie with ServiceNow Cloud Observability
    • Integrate Opsgenie with Solarwinds SAM
    • Integrate Opsgenie with Webhook
    • Integrate Opsgenie with Zendesk app
    • Integrate Opsgenie with Alert Logic
    • Integrate Opsgenie with AlertSite UXM
    • Integrate Opsgenie with Amazon CloudTrail
    • Integrate Opsgenie with Amazon CloudTrail-Amazon CloudWatch
    • Integrate Opsgenie with Amazon CloudWatch
    • Integrate Opsgenie with Amazon CloudWatch Events
    • Integrate Opsgenie with Amazon EC2 Auto Scaling
    • Integrate Opsgenie with Amazon RDS
    • Integrate Opsgenie with Amazon Route 53 Health Check
    • Integrate Opsgenie with Amazon SES
    • Integrate Opsgenie with Microsoft Azure
  • Other Opsgenie integrations
    • What is a default API integration?
    • Create an API integration
    • Incoming call routing
    • Integrate incoming call routing
    • Integrate your email with Opsgenie
  • Connect Opsgenie with other Atlassian products
    • Use Opsgenie with Bitbucket Cloud
    • Use Opsgenie with Jira Cloud
    • Use Opsgenie with Jira Service Management Cloud
  • Access integration reference information
    • Outgoing integration triggers for team routings
    • Effects of deprecating the old API
    • Integration types to be used with the API
  • Check system health with Opsgenie Heartbeats
    • Add Heartbeats to monitor systems
    • Switch from Heartbeat v1 to Heartbeat v2
    • Monitoring Nagios using Heartbeats
    • Use Heartbeat monitoring v1
    • Heartbeat API v2 migration guide
• Learn modern incident management
  • Discover Opsgenie's incident management functionality
    • What is an incident?
    • Navigate the incidents list
    • Search syntax for incidents
    • Access and modify the incident timeline
    • Add or remove an incident responder
    • Add a stakeholder to an incident
    • Define incident response roles
    • What are incident priority levels?
  • Manage an incident
    • Manually create an incident
    • Automatically create an incident with incident rules
    • Create an incident template
    • Associate an alert with an incident
    • Manage the incident with incident actions
    • Resolve or reopen an incident
    • Close or delete an incident
    • Create a postmortem report
  • Investigate the potential causes of an incident
    • Investigate an incident
    • The incident investigation view
    • Investigate Incidents with GitLab CI/CD
  • Collaborate during incidents
    • How to collaborate during an incident
    • Use the Incident Command Center (ICC)
    • Use Zoom for the Incident Command Center
    • Set up a conference bridge
    • Use chat rooms for incident collaboration
    • Automate incident communication
    • Create an email template for stakeholder notifications
    • Connect Slack app for incident management
    • Incident visibility and action permissions
• Get started with Opsgenie services
  • Manage services in Opsgenie
    • What are services in Opsgenie?
    • Search syntax for services
    • Manage internal services
    • Manage external services
    • Subscribe to a service
    • Create a service relationship
    • Investigate incidents with Bitbucket
  • Access service status tools
    • View the status of a service
    • Generate status pages from Opsgenie alerts
    • Report a problem
• Remediate your system with Opsgenie actions
  • Set up action channels
    • What are action channels?
    • Set up Opsgenie actions
    • Set up an action channel with AWS Systems Manager Channel
    • Set up an action channel with REST Endpoint
    • Set up an action channel with AWS Simple Notification
    • Set up an action channel with OEC
  • Manage Opsgenie actions and parameter types
    • Manage Opsgenie actions with AWS Systems Manager
    • Manage Opsgenie actions with REST Endpoint
    • Manage Opsgenie actions with AWS Simple Notification Service
    • Manage Opsgenie actions with OEC
    • Execute Opsgenie actions
    • Execute AWS EC2 Rescue Tool with Opsgenie actions
    • Parameter types for Opsgenie actions
• Explore Opsgenie's extensibility platforms
  • Learn about Opsgenie Edge Connector
    • Opsgenie Edge Connector as an extensibility platform
    • Opsgenie Edge Connector installation packs
    • Configure Opsgenie Edge Connector
    • Run Opsgenie Edge Connector
    • Opsgenie Edge Connector alert action data
• View reports and analytics in Opsgenie
  • Learn about Opsgenie reports
    • View global and team reports
    • View the post-incident analysis report
    • View postmortem reports
    • How are global reports calculated?
    • How are team reports calculated?
    • Reporting terminology and advanced capabilities
  • Access your global reports
    • View global alert MTTA/R analytics
    • View global alert and user productivity analytics
    • View global API usage analytics
    • View global DevOps metrics
    • View global incoming call routing data
    • View global infrastructure health reports
    • View global monthly insights
    • View global notification analytics
    • View global on-call times per user
    • View global service health reports
  • Access your team reports
    • View team alert MTTA/R analytics
    • View team alert and user productivity analytics
    • View team API usage analytics
    • View team DevOps metrics
    • View team infrastructure health reports
    • View team on-call times per user
• Manage user accounts and single sign-on (SSO) in Opsgenie
  • Configure login and SSO
    • Log in to Opsgenie
    • Enable password policies
    • Switch to Atlassian login
    • Switch to Opsgenie login
    • Configure SSO for Opsgenie
    • Configure Google SSO
    • Configure OneLogin SSO
    • Configure Okta SSO
    • Configure Ping Identity SSO
    • Configure Azure Active Directory SSO
    • Configure Microsoft Active Directory Federation Services SSO
    • Configure SAML-based SSO
    • Delete your Opsgenie account
  • Migrate Opsgenie to an Atlassian account
    • Migrate Opsgenie accounts to an Atlassian account
    • Connect owner and admin accounts to an Atlassian site
    • Connect user accounts to an Atlassian site
  • Opsgenie account administration
    • API key management
    • Opsgenie Terraform Provider
    • Opsgenie CloudFormation Resources
    • Migrate from Terraform's Opsgenie Provider to Atlassian Operations Provider

1. Atlassian Support
2. Opsgenie
3. Resources
4. Manage user accounts and single sign-on (SSO) in Opsgenie
5. Configure login and SSO

Configure Microsoft Active Directory Federation Services SSO

Active Directory Federation Services is a standards-based service that allows the secure sharing of identity information between trusted business partners. Opsgenie supports single sign on with AD FS which means your organization can easily incorporate Opsgenie into your application base in AD FS, control which users have access to your Opsgenie account and let your users securely access Opsgenie.

For general information about Opsgenie's Single Sign-On feature, refer to the Single Sign-On with Opsgenie document. This document describes the specific instructions you can use to integrate your AD FS with Opsgenie SSO.

To configure Single Sign-On integration between your Active Directory Federation Services and Opsgenie accounts, go to Opsgenie SSO page, select "Microsoft ADFS" as provider and follow the instructions below:

Setting up Microsoft Active Directory Federation Services Integration

This guide was prepared using Windows Server 2012 R2 standard; however, other recent versions should also work.

Part 1: Adding a Relying Party Trust

• Open AD FS Management Tool. Expand Trust Relationships from left pane, select Relying Party Trusts and click Add Relying Party Trust from right pane. Add Relying Party Trust Wizard will be opened.

• Click Start button on Welcome step.

• Specify a display name and click Next. *

• Choose AD FS Profile on Choose Profile step and click Next.

• Leave Configure Certificate step as default, because we are encrypting none of the tokens. Click Next.

• Select Enable support for the SAML 2.0 WebSSO protocol. Switch to your SSO Settings page on Opsgenie UI, copy the SAML 2.0 Service URL value. Paste this URL into Relying party SAML 2.0 field on AD FS wizard. Click Next.

• Switch to your SSO Settings page on Opsgenie UI and copy the Identifier value. Paste this value into Relying party trust identifier field on AD FS wizard, click Add and then click Next.

• Please note that your Replying party trust identifiers maybe different than this. Please use identifier on your settings page of Opsgenie account.

• Select I do not want to configure multi-factor authentication settings for this relying party trust at this time. and click Next.

• Check Permit all users to access this relying party and click Next.

Review your settings on Ready to Add Trust step and click Next.

• Click Close to complete the wizard.

Part 2: Updating Secure Hash Algorithm

• Right click on the relying party trust that you have recently added and click Properties.

• Switch to Advanced tab. Expand the drop down list from Secure hash algorithm and select SHA-1. Click Apply and then click OK.

Part 3: Editing Claim Rules for the Relying Party Trust

• Right click on the relying party trust that you have recently added and click *Edit Claim Rules...

• Click *Add Rule.

• Select Send LDAP Attributes as Claims as Claim rule template and click Next.

• Give a name for Claim rule name and select Active Directory as Attribute store. Under the LDAP mapping section; select E-Mail-Addresses as the LDAP Attribute and select E-Mail Address as the Outgoing Claim Type from the drop-down lists. Click Finish.

• Click Add Rule again.

• Select Transform an Incoming Claim and click Next. *

• Give a name for Claim rule name. Select E-Mail Address as Incoming claim type, Name ID as Outgoing claim type and Email as Outgoing name ID format from the drop-down lists. Make sure that Pass through all claim values is selected. Click Finish.

• Click Apply and then OK.

Part 4: Exporting the Certificate

• Select AD FS > Services > Certificates on AD FS Management Tool from left pane. Right click the certificate under the Token-signing section and click View Certificate.

• Switch to Details tab and click *Copy to File...

• Certificate Export Wizard will be opened. Click Next.

• Select DER encoded binary X.509(.CER) as the format and click Next.

• Select a destination to export and click Next.

• Click Finish and then click OK if the export was successful.

The exported certificate is in DER format, however we need the certificate in PEM format. To perform this conversion, you can use SSL Shopper or Open SSL. SSL Shopper is used in this guide. Open SSL Shopper and click SSL Converter - Convert SSL Certificates to different formats.

• Select the certificate file that you have recently exported. Select DER/Binary as the current type and Standard PEM as the type to convert to. Click *Convert Certificate.

If you are using Open SSL to convert the type of the certificate, you can use the following command:

Shell

openssl x509 -inform der -in certificate_in_name.cer -out certificate_out_name.pem

• When the converted certificate is downloaded, open the certificate with a text editor (Notepad, TextEdit, etc). Copy the content of the file.

• Switch back to your SSO Settings page on Opsgenie and paste the certificate content into X.509 Certificate field.

• Paste your SAML 2.0 Federation Endpoint (Login URL) to SAML 2.0 Endpoint field. Your Login URL is generally the URL of your ADFS service with /adfs/ls/ suffix. Click Apply SSO Settings.

• Now users in your AD FS can login with Opsgenie via SSO using their directory credentials.

Make sure that email addresses of users are exactly same on both Opsgenie and your Active Directory Federation Services.

Was this helpful?

YesNoIt wasn't accurateIt wasn't clearIt wasn't relevantProvide feedback about this article

Still need help?

The Atlassian Community is here for you.Ask the Community

• Configure login and SSO
• Show more
• Configure Ping Identity SSO
• Configure Azure Active Directory SSO

• Configure Microsoft Active Directory Federation Services SSO

• Configure SAML-based SSO
• Delete your Opsgenie account

On this pageSetting up Microsoft Active Directory Federation Services IntegrationPart 1: Adding a Relying Party TrustPart 2: Updating Secure Hash AlgorithmPart 3: Editing Claim Rules for the Relying Party TrustPart 4: Exporting the CertificateCommunityQuestions, discussions, and articles