The Okta/Orginio SAML integration currently supports the following features:
For more information on the listed features, visit the Okta Glossary.
Sign in to your Orginio account as an administrator.
Go to Menu > Settings > User management > SSO and enter the following:
Identity Provider Single Sign-On URL: Copy and paste the following:
Sign into the Okta Admin Dashboard to generate this variable.
Identity Provider Issuer: Copy and paste the following:
Sign into the Okta Admin Dashboard to generate this variable.
x.509 certificate: Copy and paste the following:
Sign into the Okta Admin Dashboard to generate this variable.
Role mapping (optional): Enter your group in Okta.
Click Save:
Optional: Group Attribute Steps: To send groups as a part of SAML assertion, in Okta select the Sign On tab for the Originio SAML app, then click Edit.
Select the appropriate filter from the drop-down menu, then type the preferred value into the field.
Click Save:
Note: To send all groups a user is assigned to, select Matches regex and type .* (dot asterix)
Done!
Make sure that you entered the correct value in the Base URL field under the General tab in Okta. Using the wrong value will prevent you from authenticating via SAML to Orginio.
The following SAML attributes are supported:
Name | Value |
---|---|
http://schemas.xmlsoap.org/claims/Group | Configured in the app UI; see Group attribute instructions (step 3) above |
Go to [your-base-url].