Okta

How to Configure SAML 2.0 for TrainingRocket

  1. Log into TrainingRocket as an administrator.

  2. Navigate to Admin:

    TrainingRocket1.png

    Select Setup > SAML 2.0 Configurations.

    TrainingRocket2.png

  3. Select New.

  4. Specify the following values, as follows (see screen shot at end of step for details):

    Note that you can leave most default values for Okta connections.
    • Local Alias: tr (this can be any ASCII key, no spaces, no punctuation)
    • Entity IDhttp://trainingrocket.com (this should be something unique to the server. If on a custom host, use that domain name)
    • Base URLhttp://trainingrocket.com (this is the root of the training rocket server, as accessible by the public. Do not use a trailing '/')
    • Signed Metadata: Yes
    • Signed Request: Yes
    • Signed Assertion Wanted: No
    • Signing Key: (select the key you wish to use when signing)
    • Encryption Key: (select the key you wish to use when encrypting)
    • TLS/SSL Key: Unselected (select the key you wish to use when using TLS/SSL protocol)
    • SSO Bindings: SSOArtifact, SSO HTTP-POST
    • Default SSO Binding: SSO Artifact (must be one of the SSO Bindings enabled above)
    • Security Profile: MetalOP
    • SSL Security Profile: PKIX
    • Signed Logout Request Required: No
    • Signed Logout Response Required: No
    • Signed Artifact Resolve Required: No

      TrainingRocket3.png

  5. Click Save. Once saved this enables other IDPs to authenticate for TrainingRocket.

  6. Set up the link to Okta in TrainingRocket.
    1. Open a new browser window.
    2. Sign in to TrainingRocket as an Administrator.
    3. Navigate to Admin > Setup > SAML 2.0 Configurations.

      TrainingRocket4.png
    4. Select New.
    5. Enter the following values: 
        • Enabled: Yes
        • Name: Okta (this can be any value that makes sense; it will be seen by users when signing in via the standard TrainingRocket login page)
        • Description: Optional description
        • External Key: Copy in the following value:Sign in to the Okta Admin app to have this variable generated for you
        • Login URL: Copy in the following value:Sign in to the Okta Admin app to generate this variable
        • IDP Metadata URL: Copy in the following value:Sign in to the Okta Admin app to have this variable generated for you

      TrainingRocket5.png

  7. Done!

    8. Note: SP-initiated flows and Just In Time (JIT) provisioning are supported.