The Okta/Mambu SAML integration currently supports the following features:
For more information on the listed features, visit the Okta Glossary.
Login to your Mambu environment.
Navigate to Administration > Access > Federated Authentication, then check Federated Authentication (SSO).
Follow the steps below:
Name: Enter OKTA.
Single Sign-On Endpoint: Copy and paste the following:
Sign into the Okta Admin Dashboard to generate this variable.
Certificate Fingerprint: Copy and paste the following:
Sign into the Okta Admin Dashboard to generate this variable.
Issuer ID: Copy and paste the following:
Sign into the Okta Admin Dashboard to generate this variable.
OPTIONAL: Check Enable Single Logout to enable SLO.
Download mambu.pem certificate.
Logout URL: Copy and paste the following:
Sign into the Okta Admin dashboard to generate this value.
Click Test FA Connection to check the settings. You should be redirected to the Okta SSO endpoint URL successfully (opened in a new window).
Click Save Changes.
OPTIONAL: To enable Single Logout in Okta, select the Sign On tab for the Mambu app, then click Edit.
Check Enable Single Logout.
Signature Certificate: Upload the mambu.pem certificate you downloaded in step 3
Click Save.
Make sure that you entered the correct value in the Base URL field under the General tab in Okta. Using the wrong value will prevent you from authenticating via SAML to Mambu.
The following SAML attributes are supported:
Name | Value |
---|---|
user.userName | |
First Name | user.firstName |
Last Name | user.lastName |
Go to: https://[your-subdomain].mambucloud.com or https://[your-subdomain].mambu.com.
Click Login with OKTA.