# Azure Active Directory (AAD) App Gallery
### Create Azure AD Enterprise Application
Visit [Azure Marketplace](https://azuremarketplace.microsoft.com/marketplace/apps/aad.it-conductor?tab=Overview) to start using IT-Conductor AAD SSO:
{% hint style="info" %}
Make sure that the Azure domain is an exact match to the e-mail domain used to register a tenant in IT-Conductor. Users with mismatched email domains will not be able to auto-provision in IT-Conductor.
{% endhint %}
In the Azure portal, navigate to **Azure Active Directory** → **Enterprise Applications > New Application.**
Search for IT-Conductor and click on the application link.
Figure 1: Browse Azure AD Gallery
After Adding the application it will show up in the installed application list.
Figure 2: Enterprise Applications in Azure Portal
Click on the application to finish the configuration.
Figure 3: IT-Conductor Overview in Azure Portal
* Click on **Assign users and groups** to configure SSO application access.
* Click on **Set up single sign-on.**
Figure 4: Set up SSO wil SAML
Click **Federation Metadata XML Download** to export the metadata to a file
an Import the metadata into IT-Conductor to create an Identity Provider definition as described in [SSO Setup](https://docs.itconductor.com/user-guide/setup/sso-setup).
Click **Test** to validate SSO Configuration.
