Okta

How to Configure SAML 2.0 for Axomo

Please sign-in to the Okta Admin app to have your organization specific variables generated for you. You might not be able to complete the setup without these generated variables.

Contents

Supported Features

The Okta/Axomo SAML integration currently supports the following features:

For more information on the listed features, visit the Okta Glossary.

Configuration Steps

  1. Sign in to your Axomo account.

  2. Go to Admin Panel > User Management > User Settings:

    go to Admin Panel > User Management > User Settings

  3. Scroll down to the ENABLE SINGLE SIGN ON section and enable SAML2 Authentication:

    Scroll down to the ENABLE SINGLE SIGN ON section and enable SAML2 Authentication

  4. Enter the following:

    • Application ID: Enter a preferred name.

    • SAML Signing Certificate (base64): Copy and paste the following:

      Sign into the Okta Admin Dashboard to generate this variable.

    • IDP Issuer: Copy and paste the following:

      Sign in to the Okta Admin app to have this variable generated for you.

    • Login URL: Copy and paste the following:

      Sign in to the Okta Admin app to have this variable generated for you.

    • Click OK:

      • Enter SAML config values

  5. Still on USER SETTINGS, click Save Changes.

  6. In Okta, select the Sign On tab for the Axomo SAML app, then click Edit:

    • Scroll down to CREDENTIALS DETAILS.

    • Application username format: select Email.

    • Click Save

    Okta Sign On page, select Application Username format = Email

  7. Done!

Notes


SP-initiated SSO

  1. Go to: https://[your-subdomain].axomo.com/.

  2. Click Login, then click Sign in with SSO:

    3. go to https://[your-subdomain].axomo.com/, click Login, then click Sign in with SSO

Custom Attributes

OPTIONAL

By default Okta only sends 3 SAML attributes in the SAML assertion: firstname, lastname, and email. To send the custom attributes customid, follow the steps below:

  1. In Okta, select the Sign On tab for the Axomo SAML app, then click Edit.

    • Select Attributes (Optional) and set customid as a Name and appuser.customid as a Value.

    • Click Save:

    Configure custom attributes in Okta

  2. Go to Directory > Profile Editor:

    Go to Directory > Profile Editor

  3. Search for your Axomo app, then click Profile:

    Configure custom attributes in Okta

  4. Click Add Attribute, then enter the following:

    • Display Name: Enter customid

    • Variable name: Enter customid

    • Click Save:

    Configure custom attributes in Okta

  5. Now, when you assign users to the Axomo SAML app, you can now specify the value of the customid attribute:

    Configure custom attributes in Okta

  6. Done!