The Okta/LCVista SAML integration currently supports the following features:
Login to your LCVista account.
Select Organization, then do the following:
URL: Make a copy of this value. It is your Default Relay State value.
Check Enable SAML login:
Still on the Edit Organization page, scroll down to the SAML config section, then do the following:
Entity ID: Copy and paste the following:
Sign into the Okta Admin dashboard to generate this value.
URL: Copy and paste the following:
Sign into the Okta Admin dashboard to generate this value.
x509 Certificate: Copy and paste the following:
Sign into the Okta admin app to have this variable generated for you.
First name attribute: Enter firstName.
Last name attribute: Enter lastName.
Email attribute: Enter email.
Username attribute: Enter login.
Click Save:
In Okta, select the Sign On tab for the LCVista app, then click Edit.
Enter the Default Relay State you made a copy of in step 2 into the corresponding field.
Click Save:
Make sure that you entered the correct value in the Subdomain field under the General tab in Okta. Using the wrong value will prevent you from authenticating via SAML to LCVista.
The following SAML attributes are supported:
Name | Value |
---|---|
login | user.login |
user.email | |
firstname | user.firstName |
lastName | user.lastName |
Go to https://[your-subdomain].lcvista.com/[your-default-relay-state]/login.
Click Login with [your-org-name] SAML: