Okta

How to Configure SAML 2.0 for HackEDU


Read this before you enable SAML

Enabling SAML affects all users who use this application, which means that users can't sign-in through their regular sign-in page. They can only access the app through the Okta service.

Backup URL

HackEDU doesn't provide a backup sign-in URL where users can sign-in using their normal username and password. You can call HackEDU Support (support@hackedu.com) to turn off SAML, if necessary.

Contents


Supported Features

The Okta/HackEDU SAML integration currently supports the following features:

For more information on the listed features, visit the Okta Glossary.


Configuration Steps

  1. Log in to HackEDU.

  2. Navigate to Admin > Settings, scroll down to SSO, then click Edit for Metadata File:

    go to Admin > Settings, scroll down to SSO and click Edit for Metadata File

  3. Enter the following:

    • URL: Copy and paste the following:

      Sign in to the Okta Admin app to have this variable generated for you

    • Click Continue:

    Enter okta-generated metadata file, click continue

  4. Toggle the switch to Enable SSO Integration and make a copy of your Domain value, marked in red:

    Enable SSO Integration

  5. Done!


Notes

SP-initiated SSO

  1. Go to: https://app.hackedu.com/login

  2. Enter your email, then click Continue:

  3. hackeduc.png


Simulating an IDP-initiated Flow

  1. Since the application only supports an SP-initiated flow, you can simulate an IdP-initiated flow with the Bookmark sign-on method. In Okta add another HackEDU app and follow the steps below:

    • SIGN ON METHODS: Select Bookmark-only.
    • Domain: Enter your Domain value you copied in step 4 above (the format is acme.com)
    • Click Done.

    hackedua.png

  2. Now you can hide the original app on the end user dashboard. Go to the General tab in Okta and check Do not display application icon to users:

    hackedub.png