How to Configure SAML 2.0 for LiquidFiles

Contents

• Supported Features
• Configuration Steps
• Notes

---

Supported Features

The Okta/LiquidFiles SAML integration currently supports the following features:

• SP-initiated SSO
• IdP-initiated SSO
• JIT (Just In Time) Provisioning

For more information on the listed features, visit the Okta Glossary.

---

Configuration Steps

1. Sign in to your LiquidFiles Admin account and select Admin:

   

2. Navigate to Configuration > Single Sign-On (SSO):

   

3. Enter the following:

   • Single Sign On Method: Select SAML 2.

   • IdP Login URL: Copy and paste the following:

     Sign in to the Okta Admin app to generate this variable.

   • Idp Logout URL: Copy and paste the following:

     Sign in to the Okta Admin app to generate this variable.

   • Idp Cert FingerPrint: Copy and paste the certificate below:

     Sign into the Okta Admin dashboard to generate this value.

   • Name Identifier Format: Copy and paste the following:

     urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress

   • Authn Context: Copy and paste the following:

     urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport

   • Signature Algorithm: Select SHA-256.
   • Auth Comparison: Select Minimum.

   • Click Save:

   

4. Done!

---

Notes

Make sure that you entered the correct value in the Base URL field under the General tab in Okta. Using the wrong value will prevent you from authenticating via SAML to LiquidFiles.

SP-initiated SSO

Open your LiquidFiles Base URL.