Prerequisites:

  • Client browsers must be configured for IWA

  • Okta Active Directory Agent is configured and working

  • At least one Active Directory server is configured for Okta IWA


A8 Admin Console

  1. Define your vanity URL e.g. mitchmurray (fictional customer) by editing your Org name.

  2. Enable SAML

  3. Download the SP Encryption Certificate SP_cert.crt to your computer.

  4. Do not hit save, leave page open.


Okta - Allow IFrame Embedding

  1. Login to your Okta Portal as an admin

  2. Click Settings > Customization

  3. Scroll to the bottom of the page, click Edit > Allow IFrame embedding > Save


Okta - Add a New Application

  1. In Okta click Admin > Applications > Add Application

  2. Click Create New App > Create

  3. Name your app e.g. a8 Silo, click Next

  4. Copy the SP Post Back URL (not Silo Access Portal URL) from AC and paste it into the Okta Single Sign on URL box

  5. Copy the SP Identity ID from AC and paste it into the Okta Audience URL box

  6. In DefaultRelayState entry box, put: 2

  7. Set the name ID and Application username format. EmailAddress is recommended.

  8. Click Advanced Settings, change Assertion Encryption to Encrypted. Upload the SP_cert.crt Encryption Certificate you downloaded from your AC, click Upload Certificate

  9. Click Next

  10. Choose "I'm an Okta customer adding an internal app"

  11. Click Finish

  12. Click View Setup Instructions

  13. Copy the Identity Provider Single Sign-on URL from Okta to AC IdP Login URL:

  14. Copy the Identity Provider Issuer URL from Okta to AC IdP Issuer:

  15. Download the X.509 Certificate from Okta and upload it to AC


*Note: Authentic8 makes no warranty on third-party software. We assume no responsibility for errors or omissions in the third-party software or documentation available. Using such software is done entirely at your own discretion and risk.


Please contact Support if you have any additional questions and/or require further information.