How to Configure SAML 2.0 for Velpic

Contents

• Supported Features
• Configuration Steps
• Notes

---

Supported Features

The Okta/Velpic SAML integration currently supports the following features:

• IdP-initiated SSO
• SP-initiated SSO
• JIT (Just In Time) Provisioning

For more information on the listed features, visit the Okta Glossary.

---

Configuration Steps

1. Save the following as metadata.xml:

   Sign in to Okta Admin app to have this variable generated for you.

2. Login to your Velpic account.

3. Go to Admin > Integration > Plugins.

4. Click Add Plugin:

   

5. Click SAML 2.0:

   

6. Enter Okta as the service name.

7. Click Add:

   

8. Enter the following:

   • Save the Single sign on URL value.

   • Issuer URL: Copy and paste the following:

     Sign into the Okta Admin Dashboard to generate this variable.

   • Provider Metadata Config: Click the Upload Provider Metadata Config and upload the Metadata.xml file you saved in step 1.

   • Optional: Select Enable for Auto create new users if you want to enable Just in Time (JIT) Provisioning.

   • Click Save.

   

9. In Okta, select the Sign On tab for the Velpic app, then click Edit.

   • Enter the Single Sign on URL value you saved earlier (step 8) into the corresponding field.

   • Click Save.

   

10. Done!

---

Notes

The following SAML attributes are supported:

Name	Value
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname	${user.firstName}
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname	${user.lastName}
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name	${user.userName}

SP-initiated SSO

1. Open the Velpic login URL: https://[yourSubDomain].velpic.net/#login.

2. Click Login with Okta.