The Okta/Databook SAML integration currently supports the following features:
For more information on the listed features, visit the Okta Glossary.
Contact the Databook Support team and request that they enable SAML 2.0 for your account. Also ask them to provide you with ACS URL, Audience URI, and SP-initiated flow URL values.
Save, then attach the following Metadata file to your request:
Sign into the Okta Admin dashboard to generate this value.
The Databook Support team will process your request and will provide you with ACS URL, Audience URI, and SP-initiated flow URL values in the following formats:
ACS URL: https://databook.auth0.com/login/callback?connection=Okta-CustomerName
Audience URI: urn:auth0:databook:OktaCustomerName
SP-initiated flow URL: https://databook.auth0.com/login?client=[id]&connection=Okta-CustomerName
In Okta, select the Sign On tab for the Databook app, then click Edit.
Scroll down to the ADVANCED SIGN-ON SETTINGS section.
Enter the ACS URL and Audience URI values (step 3) into the corresponding fields.
Click Save:
Done!
Okta sends the following default attributes as part of the SAML assertion:
Name | Value |
---|---|
firstName | user.firstName |
lastName | user.lastName |
user.userName |
In addition to the default attributes, Okta supports the following custom attribute:
Name | Value |
---|---|
salesforceId | appuser.salesforceId |
Open the SP-initiated flow URL (step 3).
Click Log in at Okta-CustomerName:
OPTIONAL
By default Okta sends only three SAML attributes in the SAML assertion: firstName, lastName, and email.
To send the custom attribute, follow the steps below:
In Okta, from the Admin dashboard, navigate to Directory > Profile Editor:
Search for your Databook app, then click the Profile edit icon:
Click Add Attribute, then enter the following:
Display Name: Enter Salesforce Id
Variable name: Enter salesforceId
Click Save:
Now, when you assign users to the Databook SAML app, you can specify the attribute Salesforce Id: