Articles in this section
Category / Section

Configuring SAML 2.0 with Okta

Published:
14 mins read

Okta is an enterprise-grade, identity management service, built for the cloud, but compatible with many on-premises applications. With Okta, IT teams can manage employee access to applications or devices. Okta comes with features such as Provisioning, Single Sign-On (SSO), Active Directory (AD) and LDAP integration, Centralized de-provisioning of users, multifactor authentication (MFA), mobile identity management, and flexible policies for organization security and control.

This article will discuss in detail how users can configure SAML on BrainCert with Okta.


Configuring SAML on BrainCert with Okta

Step 1:

Log in to Okta click on 'Applications' and select 'Add Application'.


Step 2:

Click on 'Create New App'.


Select 'Web' as the platform and 'SAML 2.0'.


Step 3:

Provide the 'App name' and click on next. For reference, we have named the app as BrainCert.


Step 4:

Copy the consumer URL from the SSO dashboard and paste it into the Okta SAML configuration. Then select the checkbox Use this for 'Recipient URL' and 'Destination URL'.

BrainCert Dashboard

1.png


Okta Dashboard


Step 5:

Open the BrainCert dashboard from the 'Global Settings' --> 'User Registration', 'Profile Field Mapping' copy all the attributes, and paste them into Okta.


LMS Dashboard

2.png


Okta Dashboard


Step 6:

Select 'I'm an Okta customer adding an internal app' and click on the check box This is an internal app that we have created.

After completing the configuration, click next and you will be redirected to the 'Sign On' tab. Download the metadata and copy the entity id and certificate.

Okta Dashboard:


Step 7:

Paste the configuration on the BrainCert dashboard and Okta audience URL.
3.png


Okta Dashboard:

Click 'General' edit SAML settings, add the audience URL, and finish the settings.


Step 8:

Click on 'Group Mapping' in the BrainCert and select the default group and roles from the drop down menu. The user will automatically be registered in that group at their first login.

4.png


Save all the settings and check your configuration. If everything is correct you can connect the service provider with the IdP. Click on My Apps and you can see the BrainCert app listed under App.

The BrainCert App on Okta will now be redirected to BrainCert.
Was this article useful?
Like
Dislike
Help us improve this page
Please provide feedback or comments