Skip to main content

Office 365


  • Office 365 does not expose any web interface for setting up Single Sign-On, you must issue a few Powershell commands.

  • The following command require a Windows computer with Powershell ≥ 5.0 installed.

Setup Powershell environment

  • Start Powershell as administrator and enter the following command:
Install-Module MSOnline

Connect to Azure AD

  • In Powershell, enter the following command and enter your Office 365 administrator credentials:

Change Office federation settings

  • Issue the following command to load the certificate:
$cert = "MIIDXXX...XXXZWCxicZzKAgV"

The contents of the certificat is available on the setup page of your Trustelem application

  • Choose a federation brand name for your organization, for instance:
$FederationBrandName = ""
  • Execute the following commands (adapt the DomainName, the URLs and keep the backquotes characters ` ):
Set-MsolDomainAuthentication -DomainName -Authentication managed
Set-MsolDomainAuthentication       -DomainName `
-FederationBrandName             $FederationBrandName `
-Authentication                  Federated `
-PassiveLogOnUri        `
-SigningCertificate              $cert `
-IssuerUri              `
-LogOffUri              `
-PreferredAuthenticationProtocol SAMLP