SAML Integration

OKTA and Security Assertion Markup Language (SAML) integration helps enable single sign-on across applications. It eliminates the need for web application passwords, enhances security, reduces risks and administration overload, and enables a secure exchange of authentication and authorization.

Login to the OKTA account.
Navigate to Applications and click on the Create App Integration option. The Create a new app integration modal appears.
Select the SAML 2.0 option.
Click Next. The Create SAML Integration page appears.

Create SAML Integration

General Settings

Enter the App name
Upload the App logo (optional).

Configure SAML A SAML Settings

General

Enter the Single sign-on URL. It is the location where the SAML assertion is sent with an HTTP POST. It is also called the SAML Assertion Consumer Service (ACS) URL for your application.

Format, http://ServerURLandPort Number/auth/realms/userful/broker/SAMLIntegrationName/endpoint

For example, http://192.168.125.198:9000/auth/realms/userful/broker/ProductOverview/endpoint

Enter the Audience URI ( SP Entity ID) It is The application-defined unique identifier that is the intended audience of the SAML assertion. This is most often the SP Entity ID of your application.

Format, http://server_url_and port number_port/auth/realms/userful

For example, http://192.168.125.198:9000/auth/realms/userful

Select Name ID Format as EmailAdress.
Select Application Username as Email.
Select update application username on as Create and update.

Attribute Statements

Add the following attributes:
1. Name: email, Name format: unspecified, Value: user.email
2. Name: firstName, Name format: unspecified, Value: user.firstName
3. Name: lastName, Name format: unspecified, Value: user.lastName.
Click .

3. Feedback

Select the option that best suits the implementation and click . The application gets created. Click on the More details option to load Metadata details. These details are used while setting up SAML configuration in the User Management application.

Set up SAML Integration

Navigate to Admin Center > User Management > External Authentication > SAML Integration.
Click on the option. The integration menu appears.
- Enter the Alias name as SAML.
- Provide the Single Sign-On Service URL. Also known as Sign On URL in OKTA’s application Metadata details.
- Enter the Display Name
- Enter the Single Logout Service URL. Also known as Sign out URL on OKTA’s application Metadata details.
- Enter the Entity ID. It is the Audience URI (SP Entity ID) set during application creation.
- Enter the IDP Entity ID. Also known as Issuer in OKTA’s application Metadata details.
- Enter the API Key Generate this by navigating to Security > API > Tokens. Click on the Create Token option and enter the token name in the dialog box that appears. Click Create Token. A success notification appears. Copy the Token Value and click the OK, I got it option. Paste this value as the API Key value.
- Click . All the users are imported from the OKTA account to the Users menu.

On the Userful Infinity Platform login page, use the Login with Okta option to access the Userful Infinity Platform.

Last updated 2 months ago

Create SAML Integration

Set up SAML Integration

Login using the OKTA account