The Okta/Workspace SAML integration currently supports the following features:
For more information on the listed features, visit the Okta Glossary.
Login to your Workspace account as administrator.
Click on the gear icon on the top right:
Select Login under Users, then click Okta under Sign-in (Authentication) Method. Then follow the steps below:
Allow users without accounts to login (optional): Select this option to enable JIT (Just In Time) Provisioning.
Identity Provider Single Sign-On URL: Copy and paste the following:
Sign into the Okta Admin dashboard to generate this value.
Identity Provider Issuer: Copy and paste the following:
Sign in to the Okta Admin dashboard to generate this value.
X.509 Certificate: Copy and paste the following:
Sign into the Okta Admin Dashboard to generate this variable.
Click Update Sign-in Settings:
Done!
Make sure that you entered the correct value in the Subdomain field under the General tab. Using the wrong value will prevent you from authenticating via SAML to Workspace.
The following SAML attributes are supported:
Name | Value |
---|---|
first | user.firstName |
last | user.lastName |
user.userName | |
login | user.login |
Go to: https://[your-subdomain].app-workspace.com/auth/login URL.
Click Login with Okta: