Okta Setup Guide

Introduction

This guide will take you through the steps to setup Okta as a single sign on Identity Provider for OptiTune.

Start adding the SAML Configuration

In the OptiTune management console, go to the SAML Configurations page, and click "Add". Enter in a name and description for the SAML Configuration, as shown below.
You will need to copy the information shown under "Identity Provider Configuration" for the next steps.




Create app integration in Okta

Login to the Okta portal

Login to your Okta portal (which is company specific) and select "Applications" > "Applications".

Click "Create App Integration"




Select SAML 2.0

Select SAML 2.0 as the sign in method, and click "Next"




Enter General Settings

Enter a name for the OptiTune application. You can also specify a custom app logo if you like, and it is available here: https://manage.opti-tune.com/style/images/siteicon/logo-256.png

Click "Next"




SAML Settings

Copy and paste the following fields from OptiTune to Okta:

  • "Reply URL (Assertion Consumer Service URL)" to "Single sign on URL"
  • "Identifier (Entity ID)" to "Audience URI (SP Entity ID)"



Attribute Statements

Scroll down, and enter the following attribute statements, so that Okta will send the needed information about the user to OptiTune

OptiTune Field Name Okta Field Name
User.Email user.email
User.FirstName user.firstName
User.LastName user.lastName

When you are done, press "Next"




Press Finish

Press Finish




Get the needed information to complete the setup in OptiTune

Press "View Setup Instructions"




Complete the SAML Configuration setup in OptiTune

Copy and paste the following fields from Okta to OptiTune:

  • "Identity Provider Single Sign-On URL" to "SAML Settings" > "Login Url"
  • "X.509 Certificate" to "SAML Settings" > "Certificate"

Importantly, press "Save" to save the SAML configuration in OptiTune.




Enable User access to the app in Okta

You will also need to select which users in Okta are allowed to use the app. Click on the "Assignments" tab, and then click on "Assign" to assign the app to users or groups in Okta.




Test the SAML configuration in OptiTune

Back in OptiTune, make sure you clicked "Save" to save the SAML configuration you have setup.

Test that the SSO integration is working by using your organization specific Single Sign On (SSO) link shown in the SAML Configurations page.

Or, you can visit the "Sign On Url" link that is shown at the top of the OptiTune SAML Configuration page, under "Identity Provider Configuration".