Okta

How to Configure SAML 2.0 for Egnyte

Contents


Supported Features

The Okta/Egnyte SAML integration currently supports the following features:

For more information on the listed features, visit the Okta Glossary.


Configuration Steps

  1. Log in to Egnyte as an Administrator.
  2. Click the menu icon in the upper right corner of the page, then select Settings:

    egnyte_new_1.png
  3. Navigate to Security & Authentication:

    egnyte_new_2.png
  4. Scroll down to the Single Sign-On Authentication section and enter the following values:

    • Single sign-on authentication: Select SAML 2.0 from the dropdown menu.

    • Identify provider: Select Okta from the dropdown menu.

    • Identify provider login URL: Copy and paste the following into this field:

      Sign into the Okta Admin dashboard to generate this value.
    • Identify provider entity ID: Copy and paste the following into this field:

      Sign in to the Okta Admin dashboard to generate this value.
    • Identify provider certificate: Copy and paste the following into this field (be sure to copy the entire value):

      Sign in to the Okta Admin dashboard to generate this value.
    • API key: Leave API Key blank if you are not enabling Map Drive Access. To enable Map Drive Access, see the following optional section.

    • Default user mapping: Select one from the dropdown menu.

    • Click Save:

    egnyte_new_3.png
  5. Then, for each user, do the following:

    1. Navigate to Users and Groups:

    2. Select a user, then select Details:

      egnyte_new_4.png
    3. On the user’s Profile page, select SSO from the Authentication dropdown menu. Specify the IdP username, then click Save:

      egnyte_new_5.png
  6. Done!



Enabling Map Drive Access in Egnyte (optional)

Note: Map Drive Access is an optional integration that can be used in addition to SAML 2.0.

What does this feature do?

Egnyte Map Drive enables you to to access your files through a virtual drive without copying them to your local machine. 

Generate an API Key in Okta

  1. In the Okta window, select Security > API, as shown below.

  2. In the API Tokens window, click Create Token.egnyte_2.png
  3. Name the token and press Create Token.egnyte_4.jpg

     

    Be sure to copy the token value when it appears. This is the only opportunity to copy the value.
  4. Navigate back to the Egnyte window and paste the token value in the API key field. After it is copied, you can go back to the Okta window and click Ok, got it!. egnyte_5.jpg

Download and Install Egnyte Connect Desktop App

  1. In the upper right hand corner, click Apps & Integrations. Navigate to Egnyte Apps. Locate the Egnyte Connect Desktop App, then click Download:

    egnyte_new_6.png
  2. Install the app. For more information, see Egnyte Connect Desktop App Overview.

  3. Done!



Notes

Make sure that you entered the correct value in the Your Egnyte sub domain field under the General tab in Okta. Using the wrong value will prevent you from authenticating via SAML to Egnyte.

SP-initiated SSO

  1. Go to: https://[your-subdomain].egnyte.com.

  2. Enter your e-mail into the corresponding field.

  3. Click Continue:

  4. egnyte_new_7.png