The Okta/Igloo SAML integration currently supports the following features:
Sign into Igloo as an administrator.
Navigate to Control Panel > Sign in Settings:
Click the Configure SAML Authentication link:
The SAML Configuration page displays.
In the General Configuration section, enter the following:
Connection Name: Enter Okta.
IdP Login URL: Copy and paste the following:
Sign into the Okta Admin Dashboard to generate this variable.
Public Certificate: Copy and paste the following:
Sign into the Okta Admin Dashboard to generate this variable.
Leave the rest of the options with their default values.
In the Response and Authentication Configuration section, enter the following:
Select Okta from the Identity Provider list.
Select your desired option from the Identifier Type list. We used Email Address in our example. Select Custom Identifier if you are going to use a NameID value that is different than email address (for example : email prefix).
Leave the rest of the options with their default values.
In the User creation on Sign in section, enter the following:
Select the Create a new user in your site when they sign in (users will be added to manage members on sign in) radio button in order to enable Just In Time (JIT) provisioning:
Select the Use SAML button on “Sign in” screen radio button, then click Save:
Close the SAML Configuration page.
In Okta, select the General tab for the Igloo SAML app, then click Edit.
Enter your Login URL into the corresponding field.
Click Save.
Done!
The following SAML attributes are supported:
Name | Value |
---|---|
FName | user.firstName |
LName | user.lastName |
user.email |
Open the Igloo Login URL.
Click Use : Okta: