Okta with Authentic8 Silo Access Portal Cheat Sheet*
Modified on: Mon, Sep 27, 2021 at 4:28 PM
Client browsers must be configured for IWA
Okta Active Directory Agent is configured and working
At least one Active Directory server is configured for Okta IWA
A8 Admin Console
Enable Portal, define a company identifier (e.g. mitchmurray)
Download the SP Encryption Certificate SP_cert.crt to your computer.
Do not hit Save; leave page open.
Okta - Allow IFrame Embedding (Optional)
Login to your Okta Portal as an Admin
Click Settings > Customization > General
Enable IFrame Embedding > Save
Note: IFrame Embedding may need to be enabled if you encounter an X-frame error with Okta.
Okta - Add a New Application
In Okta, click Admin > Applications > Add Application
Click Create New App > Create
Name your app (e.g. a8 Silo), click Next
Copy the SP Post Back URL (not Silo Access Portal URL) from A8 Admin Console and paste it into the Okta Single Sign on URL box
Copy the SP Entity ID from A8 Admin Console and paste it into the Okta Audience URI box
In DefaultRelayState entry box, enter: 2 (Installed Client) or 4 (Web Client)
Set the name ID and Application username format. EmailAddress is recommended.
Click Advanced Settings
Set Authentication context class to Password Protected Transport
Change Assertion Encryption to Encrypted.
Upload the SP_cert.crt Encryption Certificate you downloaded from your AC, click Upload Certificate
Choose "I'm an Okta customer adding an internal app"
Click View Setup Instructions
Copy the Identity Provider Single Sign-on URL from Okta to A8 Admin Console IdP Login URL:
Copy the Identity Provider Issuer URL from Okta to A8 Admin Console IdP Issuer:
Download the X.509 Certificate from Okta and upload it to A8 Admin Console
A8 Admin Console - review of steps 16-18 above.
- IdP Issuer: http://www.okta.com/<Okta Application ID>
- IdP Login URL: https://<your Okta org ID>.okta.com/app/<application name>/<Okta Application ID>/sso/saml
- IdP Signing Certificate: X.509 Certificate from Okta.
Note: Authentic8 makes no warranty on third-party software. We assume no responsibility for errors or omissions in the third-party software or documentation available. Using such software is done entirely at your own discretion and risk.
Please contact Support if you have any additional questions and/or require further information.
Did you find it helpful?
Sorry we couldn't be helpful. Help us improve this article with your feedback.