How can we help?

Okta SAML setup guide

Emily B
Emily B
  • Updated

Step 1: Create SAML Integration

In your Okta Application Dashboard go to "Applications" in the sidebar.

A screenshot showing where to select 'Applications' in the Okta dashboard.

Click "Create App Integration".

A screenshot showing where to select 'Create App Integration' in the Okta dashboard.

Select "Create New App", then select "SAML 2.0" as a Sign on method, then click "Next".

A screenshot showing where to select 'SAML 2.0' in the 'Create a new app integration' portal in the Okta dashboard.

Enter an App name that describes Ten Thousand Coffees, then click "Next".

A screenshot showing the 'App name' creation in the Okta dashboard.

On the Configure SAML tab in Okta, copy Single Sign-On URL and Audience URI (SP Entity ID) to the right fields. These will be provided to you by Ten Thousand Coffees via a unique setup link.

Submit the "Single Sign-On URL" and the "Audience URI (SP Entity ID)".

A screenshot showing the where to input the 'Single Sign-On URL' and 'Audience URI' in the Okta dashboard.

Step 2: Configure Attribute Statements

Find Attribute Statements configuration in SAML Settings.

A screenshot showing the configuration of the 'Attribute Statements' in the Okta dashboard.

Fill in the following Attribute Statements and click "Next":

Name

Value

id

user.id

email

user.email

firstName

user.firstName

lastName

user.lastName

 

Step 3: Submit Application Feedback

Select "I'm an Okta customer adding an internal app" from the options menu.

A screenshot showing where to select 'Im an Okta customer' in the Okta dashboard.

Step 4: Add Users to SAML App

In order to test out SSO authentication, you will first need to assign your Okta SAML app to Groups.

Click on the "Assignments" tab of the app and then select "Assign to Groups".

A screenshot showing where to select 'Assign to Groups' in the Okta dashboard.

Find the Group(s) that you would like to assign to the app and click "Assign" next to it. Click "Done" when you're finished.

A screenshot showing how to assign a group to an application in the Okta dashboard.
A screenshot showing how to assign a group to an application in the Okta dashboard.

Step 5: Upload Identity Provider Metadata

To implement SAML SSO you will need to share your identity provider's metadata with the application.

URL Metadata Configuration

  1. Click on the "Sign On" tab of the SAML app you just created.

  2. Locate the "Metadata URL" under the "Metadata details".

  3. Select "Copy" to copy the link, then paste it in the unique setup link shared with you earlier by Ten Thousand Coffees.

A screenshot showing how to obtain the 'Metadata URL' from the Okta dashboard.

7: Test Single Sign On

Ten Thousand Coffees will ask you to try signing in to test the connection.

Was this article helpful?

0 out of 0 found this helpful

Have more questions? Submit a request

Comments

0 comments

Please sign in to leave a comment.