Support Support PRONOTE Campus

  • Delegate authentication of teachers and students to the Entra ID portal (formerly Azure AD)

Users who log in to their Webspace must authenticate themselves with a username and password. This step can be delegated to the single sign-on service integrated into Entra ID.

Case No. 1: User authentication has been delegated to the Entra ID portal (formerly Azure AD).

  1. From the panel My schedules of the console, select the schedule from the drop-down menu.
  2. Click on the tab PRONOTE Campus.net, then the tab Delegate the authentication.
  3. You can enter multiple configurations per protocol, but only one can be activated. Click in the column Active to activate the delegation protocol to be used.
  4. In the table, tick the Webspaces concerned by the delegation




  1. Publish the base.

Case No. 2: User authentication is not delegated to the Entra ID portal 
(formerly Azure AD)

Create a corporate application on the Entra ID portal

  1. Access your Entra ID portal.
  2. Go to Azure Active Directory and select Corporate applications > All the applications.
  3. Click on New application.
  4. Click on Create your own application.
  5. Give your application a name and choose Integrate another application that you can't find in the gallery (non-gallery).
  6. In the pop-up window, choose Configure single authentication.
  7. Choose the protocol SAML.
  8. In part 3, SAM certificates, copy the application federation metadata URL.
  9. Go to the hosting console PRONOTE Campus to recover the delegation information.

Delegate authentication to the Client via a SAML2 server

  1. From the panel  My schedules of the console, select the schedule from the drop-down menu.
  2. Click on the tab PRONOTE Campus.net, then the tab Delegate the authentication.
  3. On the line SAML2 Protocol, click on the button to enter a new configuration.

  1. In the pop-up window, enter:
    • a name for the delegation configuration.
    • the SAML server URL recovered from the Entra ID portal in the previous step, validating with the key Enter from your keyboard (recovery of the configuration XML file).
  2. If you want users to be able to access PRONOTE Campus without having to go through the SAML server, tick Authorize authentication by PRONOTE Campus.net (without querying the SAML server). In this case, users will have to log in with their PRONOTE Campus username and password. Select whether this option is permanent or only available if the SAML server fails to respond.



  1. Copy the URL from PRONOTE Campus.net for the SAML server and retrieve the XML configuration file to be used on the Entra ID portal.
  2. Click on the button Validate.
  3. In the table, tick the Webspaces concerned by the delegation.
  4. Click in the column Active to activate the protocol and publish the database.

Configure the corporate application on the Entra ID portal (formerly Azure AD)

  1. Return to the unique authentication configuration on the Entra ID portal.
  2. Click on Load the metadata file and select the file configurationSaml.XML that you recovered in the previous step.
  3. In the pop-up window, click on Save.

Reconciling Entra ID (formerly Azure AD) users with PRONOTE Campus users

  1. Go to the portal Azure > Azure Active Directory > Users.
  2. Click on Download the users.
  3. Edit the downloaded *csv file to replace commas with semicolons.
  4. Go to the display Communication > Identity management > Reconciliation of the identities of the Client PRONOTE Campus .
  5. Select Saml in the upper drop-down menu.
  6. Select Users in the lower drop-down menu.



  1. Click on the button to select the *.csv file recovered in the previous step.
  2. In the pop-up window, click on Browse to identify the *.csv file.
  3. Select Semi-colon as a field separator.
  4. Reconcile the fields in the *.csv file with the fields available in PRONOTE Campus
    • userPrincipalName corresponds to Partner Identifier;
    • surname corresponds to last name;
    • givenName corresponds to first name.
  5. Select at least the fields Surname and Partner Identifier The field First name is required for homonyms.
  6. Click on Import.
Was this content useful to you ?
https://docs.index-education.com/docs_en/en-pronote-campus-support-page-198-3277-delegate-authentication-of-teachers-and-students-to-the-entra-id-portal-formerly-azure-ad.php

Can't find an answer to your question ?

Contact our support

INDEX ÉDUCATION | © 2026 - B