Add From the Entra Gallery (OIDC)
There are a few simple configurations that need to take place within Highway to allow installation of the published Entra Gallery application to your Entra tenant. Please coordinate with your Technical Sales Engineer at Highway to complete this installation.
Add the Enterprise Application
Sign in to the Microsoft Entra admin center with a Cloud Application Administrator, Application Administrator, or Global Administrator role.
In the left navigation menu, go to Entra ID > Enterprise apps.
Click + New application.
In the Browse Microsoft Entra App Gallery page, search Highway.
Select the Highway application with the Highway "H" logo.
Watch your step!
Make sure you're signed out of the Highway broker portal before proceeding with the next step.
Select the Create/Sign-In button which will redirect you into Highway.
You'll be required to enter your email address and click continue on the Highway sign in portal.
Highway will redirect you back to Entra to review Permissions Requested. Read and accept to install the application to your tenant.
After accepting permissions, you'll be signed into Highway. Navigate back to Entra and in the menu, go to Entra ID > Enterprise apps.
Confirm the Highway application shows as installed and has application ID:
f3b64aa4-3619-400c-b13f-7283ca62f6c0
Assign Users and Groups
After the application is configured, you must assign users or groups to it to grant them access.
In the application's management menu, select Users and groups.
Click + Add user/group.
On the Add Assignment pane, click None Selected under Users and groups.
Select the users or groups you want to assign to the application and click Select.
Optionally, select a role for the users or groups if the application has defined roles.
Click Assign. Only users assigned to this application will be able to access it through your Entra authentication.
Lastly, navigate to Enterprise Apps > Highway > Properties > Assignment required to enforce users to be assigned to the application to authenticate into Highway.
Once configured, let your Technical Sales Engineer at Highway know when you plan to enforce SSO for Highway through the configured Entra application.
Add a Custom SAML App
Add the Enterprise Application
Sign in to the Microsoft Entra admin center with a Cloud Application Administrator, Application Administrator, or Global Administrator role.
In the left navigation menu, go to Entra ID > Enterprise apps.
Click + New application.
Select Create your own application.
Give your application a name (
Highway SAMLis a crowd favorite) and select Integrate any other application you don't find in the gallery (Non-gallery).Click Create.
Configure Single Sign-On (SSO)
On the new application's overview page, go to Manage > Single sign-on.
Choose SAML as the single sign-on method.
In the Basic SAML Configuration section, click the Edit pencil icon.
Enter the following information:
Variables | Value |
Identifier (Entity ID) |
|
Reply URL(Assertion Consumer Service URL) |
|
Sign on URL |
|
Attributes and Claims | Map ' |
Click Save
Download the XML Metadata File
After saving the SAML configuration, scroll down to SAML Signing Certificate.
Next to Federation Metadata XML, click the Download link.
Send the downloaded XML file to your Technical Sales Engineer contact at Highway.
Assign Users and Groups
After the application is configured, you must assign users or groups to it to grant them access.
In the application's management menu, select Users and groups.
Click + Add user/group.
On the Add Assignment pane, click None Selected under Users and groups.
Select the users or groups you want to assign to the application and click Select.
Optionally, select a role for the users or groups if the application has defined roles.
Click Assign. Only users assigned to this application will be able to access it through your Entra authentication.
Once configured, let your Technical Sales Engineer at Highway know when you plan to enforce SSO for Highway through the configured Entra application.
Additional Resources from Microsoft