How to Configure SAML 2.0 for Duo Admin Panel

Contents

• Supported Features
• Configuration Steps
• Notes

---

Supported Features

The Okta/Duo Admin Panel SAML integration currently supports the following features:

• SP-initiated SSO
• IdP-initiated SSO

For more information on the listed features, visit the Okta Glossary.

---

Configuration Steps

1. Login to your Duo Admin Panel instance.

2. Navigate to Administrators > Admin Login Settings.

3. Authentication with SAML: Select a required option. We used Optional in our example.

   Note: For the Required option - Administrators, except Owners, will be required to sign in with Okta.



4. Enter the following:

   • In the SAML Identity Provider Settings section, and enter the following:

   • Identity provider: Select Okta.

   • Configuration method: Select Paste.

   • Metadata XML: Copy and paste the following:

     Sign in to Okta Admin app to have this variable generated for you.

   • In the Metadata for Configuring with Okta section: Copy the SAML URL value.

   • Click Save:

   

5. In Okta, select the Sign On tab for the Duo Admin Panel SAML app, then click Edit.

   • Scroll down to ADVANCED SIGN-ON SETTINGS: Enter your SAML URL value (step 4).

   • Click Save.

   

6. Done!

---

Notes

SP-initiated SSO

1. Open your Duo Admin Panel login URL.

2. Click Single Sign On [Beta]:

   

3. Enter your Email address.

4. Click Continue to Identity Provider: