Setting up OKTA as SAML IDP
- Shantaveer Hosamath
- Mitchell Saunders
Introduction
By setting up OKTA as a SAML Identity Provider (IDP), organizations can enable secure Single Sign-On (SSO) across multiple applications, allowing users to authenticate with OKTA and gain access to various Service Providers (SPs) using the SAML 2.0 protocol. This document outlines the steps to configure OKTA as a SAML IDP, including the initial setup, SAML-specific configuration, and integration with service providers, with the goal of establishing a reliable and secure authentication process that meets organizational security requirements.
OKTA Setup
Account setup on OKTA
Sign in to your OKTA account as a user with administrative privileges
Navigate to Applications, then Applications and click on Create App Integration
Select SAML 2.0 as Sign in method and Add an App name and App logo (optional)
Add in the SAML Sign on settings which are available in Firstwave’s application under Help=> SAML Metadata
Create a New Custom Attribute ID (for example, userid) using Profile Editor & click on Add attribute as shown in below screenshots.
To add NMIS user:
Navigate to People, click on User then select the Profile tab.
Click on the Edit button and Enter NMIS userid under userid and click on Save
Copy underlined metadata details from OKTA for FirstWave SAML configuration. This can be found in Applications > Applications >Sign on