Okta

How to Configure SAML 2.0 for Oracle Hyperion EPM Cloud Services

Contents

Supported Features

The Okta/Oracle Hyperion EPM Cloud Services SAML integration currently supports the following features:

For more information on the listed features, visit the Okta Glossary.

Configuration Steps

  1. Login to your Oracle CLOUD My Services account as administrator.

  2. Navigate to Users > SSO Configuration > Configure SSO:

    hyperion1.png

  3. Select Import identity provider metadata, then perform the following (see screenshot at the end of step for reference):

      Login Provider Metadata: Download, then select Choose File to upload the following:

      Sign into the Okta Admin dashboard to generate this value.

    • SSO Protocol: Select HTTP POST from the dropdown menu.

    • User Identifier: Select User's Email Address from the dropdown menu.

    • contained in: Select NameID from the dropdown menu.

    • Click Save.

    hyperion2.png

  4. Make a copy of the value for Provider Id and Assertion Consumer Service URL:

    hyperion3.png

  5. In Okta, select the Sign On tab for the Oracle Hyperion EPM Cloud Services app, then click Edit.

  6. Scroll down to the ADVANCED SIGN-ON SETTINGS section.

  7. Enter the Provider Id and Assertion Consumer Service URL values you copied earlier into the corresponding fields.

  8. Click Save.

    9. hyperion_new_1.png

  9. Go back to Oracle CLOUD My Services and click on Test your SSO:

    hyperion5.png

  10. Click on Start SSO:

    hyperion6.png

  11. If you see the message below, the configuration is successful with Okta IdP.

    hyperion7.png

  12. Enable SSO by clicking Enable SSO

    hyperion8.png

  13. Done!

Notes

SP-initiated SSO

  1. Go to https://[your-oracle-epm-environment]/workspace or https://[your-oracle-epm-environment]/epm and enter your Identity Domain.

    hyperion9.png

  2. Click Company Sign In:

    hyperion10.png