These SAML instructions contain Force Authentication configuration steps that are optional. If you are not going to use Force Authentication, skip the steps that are marked as [Optional Force Authentication] and highlighted in blue font.
The Okta/Arxspan SAML integration currently supports the following features:
For more information on the listed features, visit the Okta Glossary.
Contact the Arxspan Support team (support@arxspan.com) and request that they enable SAML 2.0 for your account.
Save, then attach the following Metadata file to your request:
Sign into the Okta Admin dashboard to generate this value.
The Arxspan Support team will process your request and will provide you with your Company Name value. After receiving a confirmation email, you can start assigning people to the application.
[Optional Force Authentication]: In Okta select the Sign On tab for the Arxspan SAML app, then click Edit:
Uncheck Disable Force Authentication.
Click Save:
The following SAML attributes are supported:
| Name | Value |
|---|---|
| user.email |
Click Sign In:
Since the application only supports an SP-initiated flow, you can simulate an IdP-initiated flow with the Bookmark sign-on method. In Okta add another Arxspan app and follow the steps below:
Now you can hide the original app on the end user dashboard. Go to the General tab in Okta and check Do not display application icon to users:
