How to Configure SAML 2.0 for Apperio

Read this before you enable SAML

Enabling SAML will affect all users who use this application, which means that users will not be able to sign in through their regular log in page. They will only be able to access the app through the Okta service.

Backup URL

Apperio does not provide backup log in URL where users can sign in using their normal username and password. You can contact Apperio Support (support@apperio.com) to turn off SAML, if necessary.


Supported Features

The Okta/Apperio SAML integration currently supports the following features:

For more information on the listed features, visit the Okta Glossary.

Configuration Steps

  1. In Okta open Sign On tab for the Apperio app.

  2. [OPTIONAL SLO]: If you are going to enable SP-initiated Single-Logout functionality, do the following:

    • Download the Apperio certificate using this link: https://app.apperio.com/sso/saml/certificate/

    • Enable Single Logout: Check this box.

    • Signature Certificate: Click Browse to locate and upload the Apperio certificate you just downloaded.

  3. Application username format: Select Email.

  4. Click Save:

  5. Okta Sign On tab, Enable SLO, select Email as Application Username format

  6. Contact the Apperio Support team at support@apperio.com and request that they enable SAML 2.0 for your tenant.

  7. Include the following information with your request:

    • IDP Metadata URL: Copy and paste the following:

      Sign into the Okta Admin dashboard to generate this value.

    • Your email domain.

  8. The Apperio Support team will process your request. After receiving a confirmation email, you can start assigning people to the application.

  9. Done!


The following SAML attributes are supported:

SP-initiated SSO

  1. Go to: https://app.apperio.com/login/

  2. Enter your Email address, then click Next:

  3. go to https://app.apperio.com/login/, enter email, click Next