Okta

How to Configure SAML 2.0 for Code42

Contents

Supported Features

The Okta/Code42 SAML integration currently supports the following features:

For more information on the listed features, visit the Okta Glossary.

Configuration Steps

  1. Sign in to the Code42 administration console.

  2. Navigate to Settings > Identity Management.

  3. Click Add Authentication Provider:

    code42_newa.png

  4. Enter the following:

    • Display Name: Enter Okta.

    • Provider's Metadata: Select Enter URL, then copy and paste the following into this field:

      Sign into the Okta Admin dashboard to generate this value.

    • Click Create Provider:

    code42_newb.png

  5. Attribute Mapping: Leave the defaults:

    code42_newc.png

  6. Open the Code42 Service Provider Metadata in a new browser tab, the metadata details will appear. Locate the entityID value and make a copy of it. Then close the browser tab.

    code42_newx.png

  7. Do one of the following:

    • OPTION A: Enable SSO for a specific organization

      • Navigate to Organizations > Active, then select a required organization:

        code42_newd.png

      • Select Edit from the Action menu:

        code42_newe.png

      • On the Organization Settings page, select the Security tab then enter the following:

        • Deselect Inherit security settings from parent.

        • Select SSO from the Select an authentication method dropdown menu. The configured SSO identity providers appear.

        • Check Okta as the identity provider.

        • Select Local from the Select a directory service dropdown menu.

        • Click Save.

        code42_newf.png

    • OPTION B: Enable SSO for all organizations

      • Navigate to Organizations > Active, then select the top-level organization. The organization details appear.

      • Select Edit from the Action menu.

      • On the Organization Settings page, select the Security tab, then enter the following:

        • Deselect Inherit security settings from parent.

        • Select SSO from the Select an authentication method dropdown menu. The configured SSO identity providers appear.

        • Check Okta as the identity provider.

        • Select Local from the Select a directory service dropdown menu.

        • Click Save.

        • Under each child organization, make sure that Inherit security settings from parent is enabled:

          code42_newy.png

  8. In Okta, select the Sign On tab for the Code42 app, then click Edit.

    • Enter the entityId you made a copy of earlier (step 6) into the Server Url field.

    • Click Save.

    code42_newg.png

  9. Done!

Notes

The following SAML attributes are supported:

SP-initiated SSO

  1. Open the Code42 Login URL.

  2. Enter your username or email into the corresponding field.

  3. Click Sign In:

    4. code42_9.png