Configuring SAML 2.0 with Okta
Okta is an enterprise-grade, identity management service, built for the cloud, but compatible with many on-premises applications. With Okta, IT teams can manage employee access to applications or devices. Okta comes with features such as Provisioning, Single Sign-On (SSO), Active Directory (AD) and LDAP integration, Centralized deprovisioning of users, multifactor authentication (MFA), mobile identity management, and flexible policies for organization security and control.
This article will discuss in detail how users can configure SAML on BrainCert with Okta.
Configuring SAML on BrainCert with Okta
Login to Okta and click on Application and select Add application
Click on Create New App.
Select Web as platform and SAML 2.0.
Provide the App name and click on next. For reference we have named the app as BrainCert.
Copy the consumer URL from the SSO dashboard and paste it in the Okta SAML configuration. Then select the checkbox Use this for Recipient URL and Destination URL.
Open BrainCert dashboard from the user registration Profile Field Mapping and copy all the attributes and paste it in Okta.
Select I'm an Okta customer adding an internal app and click on the check box This is an internal app that we have created
After completing the configuration, click next and you will be redirected to the sign on tab. Download the metadata and copy the entity id and certificate.
Paste the configuration on the BrainCert dashboard and Okta audience URL
Click General and edit SAML settings and add the audience URL and finish the settings.
Click on the Group Mapping in the BrainCert and select the default group and roles from the drop down menu. The user will automatically be registered in that group at their first login.
Save all the settings and check your configuration. If everything is correct you can connect the service provider with the IdP. Click on My Apps and you can see the BrainCert app listed under App.
The BrainCert App on Okta will now be redirected to BrainCert.