The Okta/Espressive SAML integration currently supports the following features:
For more information on the listed features, visit the Okta Glossary.
Contact the Espressive Support team (support@espressive.com) and request that they enable SAML 2.0 for your account.
Save, then attach the following metadata file to your request:
Sign into the Okta Admin dashboard to generate this value.
The Espressive Support team will process your request and will provide you with your Subdomain value and SP metadata.
In Okta, select the Sign On tab for the Espressive app, then click Edit.
Enter the Subdomain value provided by Espressive into the corresponding field.
Click Save:
OPTIONAL: To enable SLO follow the steps below:
Open the SP metadata file provided to you by Espressive Support
Copy the value provided in the attribute <ns1:X509Certificate>:
Open a text editor, and paste the copied certificate. Then add ----BEGIN CERTIFICATE--- as the first line and ---END CERTIFICATE---- as the last line, then save the file as sp.cert:
-----BEGIN CERTIFICATE----- [copied value] -----END CERTIFICATE-----
In Okta, select the Sign On tab for the Espressive SAML app, then click Edit:
Check Enable Single Logout.
Upload sp.cert to Signature Certificate field.
Click Save:
Done!
The following SAML attributes are supported.
| Name | Value |
|---|---|
| FirstName | user.firstName |
| LastName | user.lastName |
| user.email |
Go to: https://[your-subdomain].espressive.com.