How to Configure SAML 2.0 for CloudAcademy

Contents

• Supported Features
• Configuration Steps
• Notes

---

Supported Features

The Okta/CloudAcademy SAML integration currently supports the following features:

• SP-initiated SSO

For more information on the listed features, visit the Okta Glossary.

---

Configuration Steps

1. Sign in to your CloudAcademy account as an administrator.

2. Go to Organization > Settings > Integrations.

3. Under SSO, click View Integration.

4. Click Start Configuring.

5. In General Settings, enter the following:

   • SSO URL (Location): Copy and paste the following:

     Sign into the Okta Admin Dashboard to generate this variable.

   • Certificate: Copy and paste the following:

     Sign into the Okta Admin Dashboard to generate this variable.

   • Email domains: Enter your email domain(s).

6. In SAML attributes mapping, enter the following attributes:

   • Permanent User ID: permanent_id

   • First name: first_name

   • Last name: last_name

   • E-mail: email

7. In the Security Settings section, check Authentication Requests Signed?

8. Click Save and Test.



9. Make a note your of Organization ID from the Post-back URL value. It’s the last part of the URL.

   For example: If your Post-back URL is https://cloudacademy.auth0.com/login/callback?connection=sso-12345678

   Your Organization ID is 12345678.

10. In Okta, select the Sign On tab for the CloudAcademy SAML app, then click Edit.

    • Scroll down to Advanced Sign-on Settings.

    • Enter your Organization ID (step 9) into the corresponding field.

    • Click Save.

11. Assign a user who exists in CloudAcademy on the Assignments tab in Okta.

12. Go back to CloudAcademy Settings and click Continue.



13. Click Test SSO Connection.

14. After successful testing, click Save.

15. From General Settings, make a note of your Subdomain URL value



16. Done!

---

Notes

• Since the only SP-initiated flow is supported, we recommend hiding the application icon for users and adding a Bookmark app. Follow the instructions here:

  Use the following Bookmark application configuration values:

  • Application label: CloudAcademy

  • URL: Enter the Subdomain URL value from step 15




• The following SAML attributes are supported:

  Name	Value
  first_name	user.firstName
  last_name	user.lastName
  permanent_id	user.id
  email	user.email

SP-initiated SSO

OPTION 1

Open the Subdomain URL value from step 15.

OPTION 2

1. Go to: https://cloudacademy.com/login/

2. Enter your Email, then click Login.

3. Click Login with SSO.