Okta

How to Configure SAML 2.0 for Bridgecrew

Contents


Supported Features

The Okta/Bridgecrew SAML integration currently supports the following features:

For more information on the listed features, visit the Okta Glossary.


Configuration Steps

  1. Log in to Bridgecrew.

  2. Navigate to Integrations > Identity Provider, then click ADD SSO:

    go to Integrations -> Identity Provider and click ADD SSO

  3. Enter the following:

    • Select Identity Provider: Select Okta.

    • Set allowed email domain: Enter your domain.

    • Upload your metadata document: Save the following file as metadata.xml and upload to Bridgecrew:

      Sign into the Okta Admin dashboard to generate this value.

    • Click SAVE:

    Enter SAML config into Bridgecrew

  4. Done!


Notes

The following SAML attributes are supported:


SP-initiated SSO

  1. Go to: https://www.bridgecrew.cloud/login/signIn/sso

  2. Enter your email, then click CONTINUE TO YOUR PROVIDER:

  3. Go to https://www.bridgecrew.cloud/login/signIn/sso, enter your email and click Continue to your provider


Simulating an IDP-initiated flow

  1. Since the application only supports an SP-initiated flow, you can simulate an IDP-initiated flow with the Bookmark sign on method.

  2. In Bridgecrew go to Integrations > Identity Provider and click Show details for your IDP created:

    In Bridgecrew go to Integrations -> Identity Provider and click Show details for your IDP created

  3. Make a copy of your Login URL:

    Make a copy of your Login URL

  4. In Okta add another Bridgecrew app and follow the steps below:

    • SIGN ON METHODS: Select Bookmark-only.

    • Login URL: Enter your Login URL you made a copy of in step 3.

    • Click Done:

    create a bookmark only Bridgecrew app

  5. Now you can hide the application icon of the original app from a user. Go to the General tab and check Do not display application icon to users.

    hide application icon of original app from users