Set Up Azure in Ironclad

1. From the Azure main page, click View Manage Microsoft Entra ID.
2. In the top bar, click + Add.
3. Select Enterprise application.
4. On the next screen, in the top bar, click Create your own application. A side panel opens.
5. In the What’s the name of your app field, enter Ironclad.
6. Select Integrate any other application you don’t find in the gallery (Non-gallery).
7. Click Create.
8. In the left panel, under the Manage section, click Single sign-on. Select SAML.
9. Set up a basic SAML configuration. To do this:
   1. Next to the Basic SAML Configuration section, click the pencil icon. A panel displays on the right side of the screen.
   2. In the Identifier field, enter ironcladapp.com.
   3. In the Reply URL field, enter the Callback URL found on your Ironclad SAML Integrations page.
10. Configure the User Attributes & Claims. To do this:
    1. Next to the User Attributes & Claims section, click the pencil icon. A panel displays on the right side of the screen.
       1. In the Additional Claims section, enter the following (case sensitive):
          1. In the Claim name field, enter email. In the Value field, enter user.mail.
          2. In the Claim name field, enter firstName. In the Value field, enter user.givenname.
          3. In the Claim name field, enter lastName. In the Value field, enter user.surname.
       2. Verify the Namespace URL field is blank.
11. Configure the SAML Signing Certificate. To do this:
    1. In the SAML Signing Certificate section, locate Federation Metadata XML and click Download. A file named “Ironclad.xml” is downloaded.
    2. On the Ironclad SAML Integrations page, under IdP Configuration XML, click Upload. Upload the Federation Metadata XML file from Azure.
    3. Click Save.
12. The configuration is complete. You can use the Azure Active Directory to add individual users and groups to Ironclad.

Assign Individual Users to the Ironclad App in Azure

1. In your Microsoft Azure portal, click the menu located in the top left, and then click Azure Active Directory > Enterprise applications > All Applications.
2. Search for the Ironclad application you created.
3. Click Assign users and groups, and then click Add user.
4. Click None Selected.
5. In the list of users, select the users that you want to add to the Ironclad application.
6. Click Select, and then click Assign. Once you receive a confirmation, your users are added to Ironclad.

Assign Groups to the Ironclad App in Azure 

1. In your Microsoft Azure portal, click the menu located in the top left, and then click Azure Active Directory > Enterprise applications > All Applications.
2. Search for the Ironclad application you created.
3. Click Assign users and groups, and then click Add user.
4. Click None Selected.
5. In the list of groups, select the groups that you want to add to the Ironclad application.
6. Click Select, and then click Assign. Once you receive a confirmation, the users in that group can log in to myapps.microsoft.com and have access to the Ironclad application.

Source: https://support.ironcladapp.com/hc/en-us/articles/12285954825239-Set-Up-Azure-SSO-SAML-Integration