BlogOpen a Ticket

SAML 2.0 - OKTA Integration

Suggest Edits
  1. Login to your “OKTA Admin Panel”.
  2. Select “Applications” from the left menu.
  1. Click the “Create App Integration” button on the Applications page.
  1. Select “SAML 2.0” as the “Sign-in method” and click the “Next” button.
  1. Fill the application name as “kondukto-saml” and click the “Next” button.
  1. Fill in the “Single sign-on URL” and “SP Entity ID” fields. Add “email” attribute statement and “groups” group attribute statement. Click the “Next” button.
  1. Fill the “Feedback” information and click the “Finish” button.
  1. On the “kondukto-saml” application page, click the “Sign On” tab and click the “More details” accordion to see SAML 2.0 details
  1. Copy the “Sign On URL” and “Issuer” fields to the safe place and download the “Signing Certificate” to the safe place.
  1. Login to your Kondukto application with an admin user.
  2. Select “Integrations” from the left menu.
  1. Select “Single Sing-On Tools” on the integrations page.
  1. Activate the “SAML” integration.
  1. Fill in the SAML integration fields and click the “Save” button.
  1. Base URL: https://{YOUR_KONDUKTO_HOST}/core/saml/acs
  2. Sign In URL: The copied “Sign On URL” value in step 9.
  3. Entity ID: The copied “Issuer” value in step 9.
  4. Entity: kondukto
  5. Certificate: The downloaded “Signing Certificate” value in step 9.
  6. Admin: The OKTA group name whose members are going to have an admin role in Kondukto
  7. Manager: The OKTA group name whose members are going to have a manager role in Kondukto
  8. Product Owner: The OKTA group name whose members are going to have a product owner role in Kondukto
  9. Team Lead: The OKTA group name whose members are going to have a team lead role in Kondukto
  10. Developer: The OKTA group name whose members are going to have a developer role in Kondukto
  11. Pentester: The OKTA group name whose members are going to have a pentester role in Kondukto
  12. Team Provisioning: If checked, OKTA groups will be created as a team in Kondukto.
  1. On the “kondukto-saml” application page, click the “Assignments” tab and assign the OKTA groups that are mapped with Kondukto roles in step 14.
  1. Click the “Login with SAML” button on the Kondukto application login page to log in with a user of the OKTA “kondukto-saml” app.
  1. Login to the OKTA user credentials to log in to the Kondukto application.

Updated 6 months ago