How to Configure SAML 2.0 for ADP

Contents

• Supported Features
• Configuration Steps
• Notes

---

Supported Features

The Okta/ADP SAML integration currently supports the following features:

• IdP-initiated SSO

---

Configuration Steps

1. Contact the ADP Support team and request that they enable SAML 2.0 for your account.

2. Include the following:

   • IDP Issuer: Copy and paste the following:

     Sign into the Okta Admin Dashboard to generate this variable.

   • x.509 Certificate: Download, then upload the following in .cert format:

     Sign into the Okta Admin Dashboard to generate this variable.

3. The ADP Support team will process your request. After receiving a confirmation email, you can start assigning people to the application.

4. Once you have assigned the desired users the ADP application, you need to do the following:

   1. In Okta, from the Admin dashboard, navigate to Directory > Profile Editor:

      

   2. Search for your ADP application, then click the Profile edit button:

      

   3. Click Add Attribute:

      

   4. Set the Display name and Variable name to personId. (This is the person Id required for ADP to process the SAML response). Click Add attribute:

      

   5. Once you have added the attribute, click Map Attributes:

      

   6. In the Okta to ADP section, save the mapping that is specific to your tenant with ADP:

      

5. Done!

---

Notes

The following SAML attributes are supported:

Name	Value
PersonImmutableID	appuser.personId