Enabling SAML will affect all users who use this application, which means that users will not be able to sign-in through their regular log-in page. They will only be able to access the app through the Okta service.
Backup URL
Drift does not provide backup log-in URL where users can sign-in using their normal username and password. You can call your account owner to turn off SAML, if necessary.
The Okta/Drift SAML integration currently supports the following features:
For more information on the listed features, visit the Okta Glossary.
Login to your Drift account as an administrator.
Navigate to Settings > App Settings > Authentication and select Configure SAML Authentication. Then follow the steps below:
Identity Provider Entity ID: Copy and paste the following:
Sign into the Okta Admin Dashboard to generate this variable.
SAML 2.0 HTTPS Redirect Endpoint: Copy and paste the following:
Sign into the Okta Admin Dashboard to generate this variable.
Identity Provider Public Key: Save the following certificate as okta.pem, then upload it to Drift.
Sign into the Okta Admin Dashboard to generate this variable.
Require signed assertions in SAML response: Enable this option.
SAML Request Signing: Keep this option disabled.
Still in Drift, go to Domains and add your domain:
In Okta, select the Sign On tab for the Drift SAML app, then click Edit.
Default Relay State: Enter https://app.drift.com.
Click Save:
Done!
The following SAML attributes are supported:
Name | Value |
---|---|
Name | user.firstName user.lastName |
Go to https://start.drift.com/ URL.
Enter your email, then click Next: