Silo Admin Console
Configure Vanity URL value
Enable SAML SSO
Download the SP Encryption Certificate SP_cert.crt to your computer
Do not click Save — leave page open
Okta — Allow iFrame Embedding (Optional)
Login to the Okta Admin Portal
Click Settings > Customization > General
Enable iFrame Embedding > Save
Optional: iFrame Embedding may need to be enabled if you encounter an X-frame error with Okta.
Okta — Add a New Application
From the Okta Admin Portal, click Admin > Applications > Add Application
Click Create New App > Create
Label your SSO app and click Next
Copy the SP Post Back URL (not Silo Access Portal URL) from the Silo Admin Console, and paste it into the Okta Single Sign on URL field
Copy the SP Entity ID from the Silo Admin Console and paste it into the Okta Audience URI field
In DefaultRelayState entry box, enter: 2 (Installed Client) —or— 4 (Web Client)
Set the name ID and Application username format. EmailAddress is recommended
Click Advanced Settings
Set Authentication context class to Password Protected Transport
Change Assertion Encryption to Encrypted
Click Upload Certificate, and select the SP_cert.crt Encryption Certificate from the Silo Admin Console
Click Next
Select I'm an Okta customer adding an internal app
Click Finish
Click View Setup Instructions
Copy the Single Sign-on URL from Okta over to the Silo Admin Console IdP Login URL field
Copy the Issuer URL from Okta over to the Silo Admin Console IdP Issuer field
Download the X.509 Certificate from Okta and upload it to the Silo Admin Console
- IdP Issuer: http://www.okta.com/<Okta Application ID>
- IdP Login URL: https://<your Okta org ID>.okta.com/app/<application name>/<Okta Application ID>/sso/saml
- IdP Signing Certificate: Upload X.509 Certificate from Okta
Please contact Support for any additional questions