Okta SAML integration
Overview
This guide is for creating IdP-initiated login flows to the Entitle web app through an Okta SAML application.
Note
This use case is not applicable when Entitle operates as part of Pathfinder, as all authentication is handled through Pathfinder authentication. See Entitle on Pathfinder for more details.
Prerequisites
- Entitle Admin.
- Okta Admin.
- Entitle's logo, is attached below:
Set up Okta to authenticate in Entitle
- Log in to the Okta admin console.
- Select 'Applications' and add choose 'Create App Integration'.
- Choose a SAML 2.0 application.
- Fill to following in the forms in the App Configuration section:
{
"General Settings":
{
"App Name": "Entitle",
"App Logo": "https://cdn2.securitysenses.com/sites/default/files/logos/entitle-logo.png",
},
"SAML Settings":
{
"Single sign on URL": "https://app.entitle.io/api/v1/sp/assert",
"Audience URI (SP Entity ID)": "https://app.entitle.io/api/v1/sp/metadata.xml",
"Default RelayState": "https://app.entitle.io/",
"Name ID format": "Unspecified",
"Application username": "Email",
"Update application username on": "Create and update"
},
"Attribute Statements":
{
"firstName": "user.firstName",
"lastName": "user.lastName",
"email": "user.email"
}
}
- Once created, navigate to the 'Sign On' tab, and copy the Metadata URL.
Add Okta app to Entitle
Important
This applies to creating an integration either through Entitle on Pathfinder or through the Entitle standalone product.
- Navigate to Entitle's Org Settings page.
- Under the Identity Providers, paste the SAML application's metadata and click Save.
Test your Okta application
- Assign users or groups to the newly created Entitle app in Okta.
- Within a few minutes, you will be able to log in to Entitle with Okta, from the Entitle log in page.
Updated 18 days ago