Okta

How to Configure SAML 2.0 for Skilljar

Contents


Supported Features

The Okta/Skilljar SAML integration currently supports the following features:

For more information on the listed features, visit the Okta Glossary.


Configuration Steps

  1. Send an email to Skilljar and request that they enable SAML 2.0 for your account. Include the following information:

    • IDP Metadata Link: Save this file and then attach:

      Sign into the Okta Admin dashboard to generate this value.

    • IDP Issuer/Entity ID: Copy and paste the following:

      Sign into the Okta Admin Dashboard to generate this variable.

    • x509 Certificate: Copy and paste the following certificate in PEM text format:

      Sign into the Okta Admin Dashboard to generate this variable.

    • Login URL/SignOn URL: Copy and paste the following:

      Sign into the Okta Admin Dashboard to generate this variable.

  2. Skilljar will provide you with the SP Metadata xml. Open the xml file, then follow the steps below:

    • Make a copy of the entityID value marked in red in the screenshot below. This is your SP EntityId.

    • Make a copy of the AssertionConsumerService value marked in red in the screenshot below. This is your UID.

    skilljar_newb.png

  3. In Okta, select the Sign On tab for the Skilljar app, then click Edit.

    • Enter the UID and SP EntityID values you made a copy of in step 2 into the corresponding fields.

    • Click Save.

    skilljar_newa.png

  4. Done!


Notes

The following SAML attributes are supported:

SP-initiated SSO

Go to http://[your-subdomain].skilljar.com/ and click Sign In.


Adding Custom Attributes

Optional

By default Okta only sends two saml attributes in SAML assertions: FirstName and LastName. You can extend this value up to 10 custom attributes by following the steps below:

  1. In Okta, navigate to Directory > Profile Editor:

    “skilljarnew_1.png"

  2. Search for the Skilljar app, then click Profile:

    “skilljarnew_2.png"

  3. Click Add Attribute and enter the following information (see screen shot at end of step for reference):

    • Display Name: Enter a preferred name for the new attribute.

    • Variable Name: If you are just adding one attribute, enter skilljar_custom1; for any subsequent attributes you add, the value will be skilljar_custom2, skilljar_custom3 and so on up to skilljar_custom10.

    • Click either:

      Add Attribute, if you want just add the one attribute.

      Save and Add Another to add additional attributes.

    • “skilljarnew_3.png"

    • Scope (optional): If you check User personal, it means that the current attribute will be available once you assign the user to the Skilljar app and will not be available once you assign the Group to the Skilljar app (see the following screenshot as an example):

    • “skilljarnew_4.png"

    • Once you have completed the steps above, the result should be as follows (for example):

    • “skilljarnew_5.png"

  4. Next you need to map the custom attributes you just added to Okta's base attributes. In the Profile Editor, click Map Attributes.

  5. Select the Okta to Skilljar tab.

  6. Use the drop down list to select the attributes you want to map:

    “skilljarnew_6.png"

    In our example, we have selected the preferred attributes, selected the green arrows (Apply mapping on user create and update).

  7. Next, select Save Mappings, then Apply updates now.

  8. Done!