Okta

How to Configure SAML 2.0 for Tiled

Contents

Supported Features

The Okta/Tiled SAML integration currently supports the following features:

For more information on the listed features, visit the Okta Glossary.

Configuration Steps

  1. Sign in to Tiled as an Account Owner.

  2. Navigate to Account Settings.

  3. Under General Settings, scroll down to the Auto Provisioning section.

  4. Select a required Default Role and Default Group for new users.

  5. Check the Enable Auto Provisioning box:

    6. tiled1.png

  6. Scroll down to the Saml Settings section.

  7. Note your Org Domain value.

  8. Identity Provider Metadata XML: Copy and paste the following:

    Sign in to Okta Admin app to have this variable generated for you.

  9. Click Update Settings.

  10. Click Download cert in order to download and save the encryption certificate.

    11. tiled2.png

  11. In Okta, select the Sign On tab for the Tiled app, then click Edit.

    • Encryption Certificate: Upload the certificate you downloaded in step 10.

      • tiled3.png

    • Scroll down to the ADVANCED SIGN-ON SETTINGS section.

    • Enter the Org Domain value you made a note of in step 7 into the corresponding field.

    • Click Save.

      • tiled4.png

  12. Still in Okta, navigate to Security > API > Trusted Origins.

    • Click Add Origin:

      • tiled_new1.png

    • Name: Enter Tiled.

    • Origin URL: Enter https://app.tiled.co URL.

    • Type: Select CORS.

    • Click Save:

      • tiled_new2.png

  13. Done!

Notes

The following SAML attributes are supported:


SP-initiated SSO

  1. Open the https://app.tiled.co/login URL.

  2. Click the Login with SSO link:

    3. tiled_new3.png

  3. Enter your email domain value.

  4. Click Next:

    5. tiled_new4.png

  5. Enter your Okta credentials.

  6. Click Sign In:

    7. tiled_new5.png