Okta

How to Configure SAML 2.0 for Onshape

Contents


Supported Features

The Okta/Onshape SAML integration currently supports the following features:

For more information on the listed features, visit the Okta Glossary.


Configuration Steps

  1. Sign in to your Onshape account as administrator.

  2. Click on your username, then select Enterprise settings from the dropdown menu:

    onshape1.png

  3. Navigate to SSO Providers > Add:

    onshape2.png

  4. Download and save the following metadata:

    Sign into the Okta Admin dashboard to generate this value.

  5. Enter the following values in the Create SSO Provider page (see screen shot at end of step for reference):

    • Name: Enter a preferred name.

    • Click Click to upload provider metadata file OR fill the details below: Locate and upload the metadata you saved in step 3.

    • Click OK.

    • onshape3.png

  6. Right click on your new SSO provider, then select Enable:

    onshape4.png

  7. Done!


Notes

Make sure that you enter the correct value in the Enterprise Domain Prefix field under the General tab in Okta. Using the wrong value will prevent you from authenticating via SAML to Onshape.


SP-initiated SSO

  1. Go to https://[your-enterprise-domain-prefix].onshape.com.

  2. Click External Sign In:

  3. go to: https://[your-enterprise-domain-prefix].onshape.com, click External Sign In