Ctrlk
Kontakt

How do I set up SAML SSO with Okta?

In this article, you will find a step-by-step guide to setting up SAML SSO with Okta as the identity provider.

In this article, you will receive a step-by-step guide to setting up SAML SSO, provided you are using Okta as your identity provider. If you are looking for instructions for setting up the SSO login at sipgate, you can find them here.

1

Create app integration

Log in to Okta as an admin, go to the Applications and click on Create App Integration.

sipgate-help-center-okta1.png

In the next step, select SAML 2.0. .

sipgate-help-center-okta2.png
2

Name app

You also have the option of giving the created app any name you like and adding an icon. Then click on Next.

sipgate-help-center-okta3.png
3

Configure SAML

In the following, configure the SAML integration by entering sipgate's service provider data in Okta. Enter the data as follows: ACS URL --> Single Sign-On URL and Entity ID --> Audience URI (SP Entity ID). Also check the box for Use this for Recipient URL and Destination URL.

Next, select the option Name ID on EmailAddress and the Application username on Email.

sipgate-help-center-okta4.png
4

Complete setup

In the next step, answer the question "Are you a customer or partner?" with "I'm an Okta customer adding an internal app", and in the App type section, select "It's required to contact the vendor to enable SAML". Then click on Finish.

sipgate-help-center-okta5.png
5

Transfer IdP data

You can find the overview of the sipgate configuration under Applications --> Sign on --> Sign on methods. In this overview, you will find the identity provider data that must be entered at sipgate. Click on More Detailsto expand all data.

sipgate-help-center-okta6.png

Enter the following data in the SSO section at sipgate (identity provider data): Sign on URL --> SSO URL and Issuer --> Entity ID. Download the certificate from Okta using the download button.

Download the certificate using the download button. If you use the copy button, not all required information will be included.

sipgate-help-center-okta1-1.png

Open the certificate with the default text editor. Copy the certificate text from the editor and paste it into sipgate under Certificate.

Important: Make sure that the sipgate application is activated in Okta.

sipgate-help-center-okta7.png
6

Enable SSO at sipgate

Once you have successfully completed these steps, the interface between sipgate and Okta should be set up. You can then enable the SSO login via the toggle at sipgate.

sipgate help center SSO7.3.png

Errors and solutions

Error message: "An error has occurred. Please try again. Back to login."

Cause: The web user with Google SSO was deleted and created as a new web user. In the Google SSO database, the old web user is still linked. Workaround: inform sipgate Support so that the Google SSO entry is deleted. Then test again whether the next Google SSO login works. Solution: we are working on a solution so that when a web user is deleted, the Google SSO deletion is also carried out.

PreviousHow do I set up SSO login for my company?NextHow do I set up SAML SSO with Microsoft?

Last updated