The Okta/RedLock SAML integration currently supports the following features:
For more information on the listed features, visit the Okta Glossary.
Login to your RedLock account.
Follow the steps below:
Enable SSO: Turn this switch on.
Make a copy of the Audience URI (SP Entity ID) value.
Identity Provider Issuer: Copy and paste the following:
Sign into the Okta Admin Dashboard to generate this variable.
Identity Provider Logout URL (OPTIONAL): Copy and paste the following:
Sign into the Okta Admin Dashboard to generate this variable.
Certificate: Copy and paste the following:
Sign into the Okta Admin Dashboard to generate this variable.
RedLock Access SAML URL: Copy and paste the following:
Sign into the Okta Admin Dashboard to generate this variable.
Allow select users to authenticate directly with RedLock (OPTIONAL): Select this option to configure some users to access RedLock console directly using their email address and password registered with Redlock in addition to logging in via the SSO provider. This helps some users to make any configuration changes when users are locked out because of any changes in IdP settings or if they want to access any data through APIs.
Users: Use this Option to select the users who can directly access RedLock console along with logging in through SSO provider. These users can also access the RedLock console directly by using their email and password registered with RedLock.
Click Save:
In Okta, select the Sign On tab for the Redlock SAML app, then click Edit.
Enter the Audience URI (SP Entity ID) value you made a copy of in step 2 in the corresponding field.
Click Save:
Make sure that you entered the correct value in the SSO Url field under the General tab in Okta. Using the wrong value will prevent you from authenticating via SAML to Redlock.
The following SAML attributes are supported:
Name | Value |
---|---|
https://api.redlock.io/saml | https://app.redlock.io/ |
https://api2.redlock.io/saml | https://app2.redlock.io/ |
https://api.eu.redlock.io/saml | https://app.eu.redlock.io/ |