Okta

How to Configure SAML 2.0 for Egnyte

Contents

Supported Features

The Okta/Egnyte SAML integration currently supports the following features:

For more information on the listed features, visit the Okta Glossary.

Configuration Steps

  1. Log in to Egnyte as an Administrator.

  2. Click the menu icon in the upper right corner of the page, then select Settings:

    Menu > Settings

  3. Navigate to Security & Authentication:

    Configuration > Security & authentication

  4. Scroll down to the Single Sign-On Authentication section and enter the following values:

    • Single sign-on authentication: Select SAML 2.0 from the dropdown menu.

    • Identify provider: Select Okta from the dropdown menu.

    • Identify provider login URL: Copy and paste the following into this field:

      Sign into the Okta Admin dashboard to generate this value.

    • Identify provider entity ID: Copy and paste the following into this field:

      Sign in to the Okta Admin dashboard to generate this value.

    • Identify provider certificate: Copy and paste the following into this field (be sure to copy the entire value):

      Sign in to the Okta Admin dashboard to generate this value.

    • API key: Leave API Key blank if you are not enabling Map Drive Access. To enable Map Drive Access, see the following optional section.

    • Default user mapping: Select one from the dropdown menu.

    • Click Save:

    enter SAML config information

  5. Then, for each user, do the following:

    1. Navigate to Users and Groups:

    2. Select a user, then select Details:

      egnyte_new_4.png

    3. On the user’s Profile page, select SSO from the Authentication dropdown menu. Specify the IdP username, then click Save:

      egnyte_new_5.png

  6. Done!



Enabling Map Drive Access in Egnyte (optional)

Note: Map Drive Access is an optional integration that can be used in addition to SAML 2.0.

What does this feature do?

Egnyte Map Drive enables you to to access your files through a virtual drive without copying them to your local machine. 

Generate an API Key in Okta

  1. In Okta, navigate to Security > API, then click Create Token:

    In Okta, Security > API, then select Create Token

  2. Enter a name for the token, then click Create Token:

    name the token, then select Create Token

  3. Make a copy of your token, then click OK, got it:

    make a copy, then click OK, got it

    Be sure to copy the token value when it appears. This is the only opportunity to copy the value.

  4. Go back to the Single Sign-On Authentication section in Egnyte and paste the API token you made a copy of into the API key field, then click Save:

    paste API token into Egnyte SSO Authentication configuration

Download and Install Egnyte Connect Desktop App

  1. In the upper right hand corner click Apps & Integrations, then navigate to Connect. Locate the Egnyte Connect Desktop App, then click Download:

    Apps & Integrations > Connect. Egnyte Connect Desktop App > Download

  2. Install the app. For more information, see Egnyte Connect Desktop App Overview.

  3. Done!


Notes

Make sure that you entered the correct value in the Your Egnyte sub domain field under the General tab in Okta. Using the wrong value will prevent you from authenticating via SAML to Egnyte.

SP-initiated SSO

  1. Go to: https://[your-subdomain].egnyte.com.

  2. Enter your e-mail into the corresponding field.

  3. Click Continue:

    4. egnyte_new_7.png