How to Configure SAML 2.0 for Databricks

Contents

• Supported Features
• Configuration Steps
• Notes

---

Supported Features

The Okta/Databricks SAML integration currently supports the following features:

• IdP-initiated SSO
• SP-initiated SSO
• JIT (Just In Time) Provisioning

For more information on the listed features, visit the Okta Glossary.

---

Configuration Steps

1. Sign in to Databricks as an administrator.

2. Navigate to Account > Admin Console > Single Sign On.

3. Follow the steps below:

   • Databricks SAML URL: Make a note of this value.

   • Single Sign-On URL: Copy and paste the following:

     Sign into the Okta Admin Dashboard to generate this variable.

   • Identity Provider Entity ID: Copy and paste the following:

     Sign into the Okta Admin Dashboard to generate this variable.

   • x.509 Certificate: Copy and paste the following:

     Sign into the Okta Admin Dashboard to generate this variable.

   • Enable Allow auto user creation if you want to enable JIT (Just In Time) Provisioning.

   • Click Enable SSO:

   

4. In Okta, select the Sign On tab for the Databricks SAML app, then click Edit.

   • Scroll down to the ADVANCED SIGN-ON SETTINGS section.

   • Enter the Databricks SAML URL value you made a copy of in step 3 into the corresponding field.

   • Click Save:

   

5. Done!

---

Notes

SP-initiated SSO

1. Open your Databricks login URL.

2. Click Single Sign On: