More info on SAML Integrations can be found by clicking here.
A step-by-step guide.
Please work with an IT point of contact at your company to configure your IdP. The SAML protocol is generic and should work with any SAML Identity Provider service.
Custom Connector:
-
Sign in to your Okta portal and navigate to your company apps.
e.g. <https://dev-576284.okta.com/app/UserHome>
-
Click Admin.
-
In the top left, if it displays < > Developer Console change it to Classic UI
-
Under Shortcuts, to the right, click Add Applications.
-
On the left, click Create New App.
-
Select Web for Platform.
-
Select SAML 2.0 for Sign on method.
-
Click Create.
-
Give the app a relevant name.
e.g. GoodTime
-
Click Next to continue to the Configure SAML step.
-
In another browser tab or window, open up the GoodTime SSO Settings page.
-
Copy the Entity Id and paste it into the Audience URI (SP Entity ID) field of the Configure SAML step in Okta.
-
Back in the GoodTime SSO Settings page, copy the ACS (Consumer) URL and paste it in the Single sign on URL and Recipient fields of the Configuration Tab in Okta.
-
Select EmailAddress for Name ID format.
-
Under Attribute Statements (Optional) add the following entries (keep in mind this is case sensitive):
-
Name: User.email
-
Name format: Unspecified
-
Value: user.email
-
-
Your Okta configuration should look like this:
- Click Next.
- Select I'm an Okta customer adding an internal app for Are you a customer or partner?
- Select This is an internal app that we have created for App type.
- Click Finish.
- You should have been navigated to the Sign On tab for the application we just created.
-
Find the link Identity Provider metadata, right click, save link as, call the file
metadata.xml
.An xml file should download to your computer file system. Open the file, copy the content.
-
Then go to configure GoodTime > Settings > SSO. Under SSO, paste the content of the
metadata.xml
into "Identify Provider Metadata" field.