You are here:
Create an App Integration for SSO in Okta
To use Okta as your identity provider while using single-sign on, configure the correct settings for your app integration.
Set up the OWN
Set Up the Own OIN App
Own has a pre-built app integration available in Okta's Integration Network (OIN). After you prepare Okta for integration, you can use this app.
- Open the Okta application.
- Navigate to the Applications page.
- Click Browse App Catalogue.
-
In the search bar, enter "Own" and select the Own app. The Add App page will open:
Name the app and click Done.
- Click Sign-On Options. Scroll down to the Settings to Sign on methods and the SAML 2.0 section.
- Click More details.
- Copy the Issuer value.
-
Download the Signing Certificate.
The certificate will be downloaded as a .cert file. Change its extension to a .pem file before uploading it in the Own Data Platform.
- Enter the values in the corresponding fields in the Own Data Platform.
- (Optional) To enable SP-Initiated sign in, enable the SP-Initiated checkbox, copy the Sign On URL value from Okta and paste it into the IdP SSO URL field.
- Click Next. It might take a few minutes to verify your settings.
- Once your settings are verified, the IdP Parameters will be displayed.
- Back in Okta, in the Settings section, click Edit in the top right.
- Enter the IdP Parameters from the Own Data Platform in the corresponding fields in the Advanced Sign-on Settings section.
- Click Finish.
Set Up Own as an Okta AIW App
SAML app integrations use federated authentication standards to give end users one-click access to your SAML application. The Okta App Integration Wizard (AIW) generates the XML needed for the SAML request. You can set up the app using the Okta App Integration Wizard (AIW).
- Open the Okta application.
- Navigate to the Applications page.
- Click Create App Integration.
- Select SAML 2.0 and click Next.
- Enter an App name and click Next.
- In the Single sign-on URL field, enter any URL (it will be replaced with the correct parameter later on).
- Enter the same value in the Audience URI (SP Entity ID) field.
- Click Next.
- Select the Feedback option that applies to you and click Finish. The Sign On page for the newly created App Integration will open automatically.
- On the right of the page, click View SAML setup instructions.
- In the page that opens, you will find the values you need for SSO Setup.
- The certificate will be downloaded as a .cert file. Change its extension to a .pem file before uploading it in the Own Data Platform.
- Enter these values in the corresponding fields in the Own Data Platform.
- (Optional) To enable SP-Initiated sign in, enable the SP-Initiated checkbox, copy the Identity Provider Sign-On URL value from Okta and paste it into the IdP SSO URL field.
- Click Next. It may take a few minutes to verify your settings.
- Once your settings are verified, the IdP Parameters will be displayed.
- In the Okta application, open the General page of the App Integration you created.
- In the SAML Settings section, click Edit.
- Click Next.
- Enter the IdP Parameters from the Own Data Platform in the corresponding fields.
- In the Name ID format drop-down, select EmailAddress.
- In the Application username, select Email.
- Click Next.
- Click Finish.
