How to Configure SAML 2.0 for Duo Admin Panel


Supported Features

The Okta/Duo Admin Panel SAML integration currently supports the following features:

For more information on the listed features, visit the Okta Glossary.

Configuration Steps

  1. Login to your Duo Admin Panel instance.

  2. Navigate to Administrators > Admin Login Settings.

  3. Authentication with SAML: Select a required option. We used Optional in our example.

    Note: For the Required option - Administrators, except Owners, will be required to sign in with Okta.

  4. duoadmin1.png
  5. Enter the following:

    • In the SAML Identity Provider Settings section, and enter the following:

      • Identity provider: Select Okta.

      • Configuration method: Select Paste.

      • Metadata XML: Copy and paste the following:

        Sign in to Okta Admin app to have this variable generated for you.
    • In the Metadata for Configuring with Okta section: Copy the SAML URL value.

    • Click Save:

  6. In Okta, select the Sign On tab for the Duo Admin Panel SAML app, then click Edit.

    • Scroll down to ADVANCED SIGN-ON SETTINGS: Enter your SAML URL value (step 4).

    • Click Save.

  7. Done!


SP-initiated SSO

  1. Open your Duo Admin Panel login URL.

  2. Click Single Sign On [Beta]:

  3. Enter your Email address.

  4. Click Continue to Identity Provider: