Okta

How to Configure SAML 2.0 for Oomnitza

This setup might fail without parameter values that are customized for your organization. Please use the Okta Administrator Dashboard to add an application and view the values that are specific for your organization.

Contents


Supported Features

The Okta/Oomnitza SAML integration currently supports the following features:


Configuration Steps

  1. Sign into your Oomnitza account.

  2. Click the gear icon, then select System Settings:

    oomnitza1.png

  3. Under Integration, select On for SSO:

    oomnitza2.png

  4. Select Okta, then click Next:

    oomnitza3.png

  5. Enter the following information (see screen shot at end of step for reference):

    • Enter your SSO URL: Copy and paste the following:

      Sign into the Okta Admin dashboard to generate this value.

    • Upload Certificate: Download, then upload the following certificate:

      Sign into the Okta Admin dashboard to generate this value.

    • JIT Provisioning (optional): Check this if you want to support JIT provisioning.

    • SSO only (optional): Checking this prevents standard authentication to Oomnitza. We suggest leaving this off for now until you have tested the SSO feature and verified it works correctly.

    • Default Role: Select the role JIT provisioned users will be assigned at the time their account is created.

    • Name Identifier: Select Email address.

    • Click Integrate.

    oomnitza4.png

  6. In Okta, select the General tab for the Oomnitza app, then click Edit.

    • Enter your Subdomain into the corresponding field.

    • Click Save.

    oomnitza5.png

  7. Done!


Notes

For SP-initiated SSO

  1. Go to: https://[your-subdomain].oomnitza.com.

  2. Click Single Sign-On (SSO):

  3. oomnitza6.png