Okta

How to Configure SAML 2.0 for Vera

Contents

Supported Features

The Okta/Vera SAML integration currently supports the following features:

Configuration Steps

  1. Copy the following IDP Metadata and save as a .xml file:
     
  2. Log in to your Vera account.
  3. Navigate to the Settings page:

    “veranew1.png"

  4. On the Settings page, navigate to the Authentication tab, then scroll down to the Internal Authentication section.

  5. Enter the following values into the corresponding fields (see screen capture at end of step for reference):

    • Select the Authentication type: SAML
    • SAML Metadata: Click Choose file, and upload the .xml file you saved in step 1.
    • Copy the following into the Login URL field:

      Sign into the Okta Admin Dashboard to generate this variable.

    • Copy the following into the Logout URL field:

      Sign into the Okta Admin Dashboard to generate this variable.

    • Email attribute: Enter user.userName (enter as is).

    • Groups attribute: Enter Groups.

    • Internal Domains and Users: Enter the domain name of the username that will be using SAML to access the account.

      For example, if the username is johndoe@mycompany.com, enter mycompany.com in this field. Or, you can also manually enter the usernames of all the users who will be using SAML under the Users section.

      “vera_new2.png"

  6. Click Save in the top right corner.

    “vera_new3.png"

  7. OPTIONAL: In Okta, select the Sign On tab for the Vera app, then click Edit.

    • Select your preferred group filter from the Groups dropdown list (the Regex rule with the value ".*" in order to send *all* Okta groups to the Vera instance we used in our example) for the attribute.

    • Click Save.

    veranew1.png

  8. Done!

Notes

The following SAML attributes are supported:

SP-initiated SSO

  1. Open Vera login URL: https://[yourSubDomain].vera.com/login.

  2. Enter your Email address.

  3. Click CONTINUE:

    4. veranew2.png