Skip to main content

Configure SAML v2 for OKTA

This documentation will guide you in configuring SAML v2 IdP for OKTA. In this case, TrueFoundry will act as Service Provider (SP) to OKTA (IdP).

Create an Application in OKTA

  1. Log in into your Okta Admin Console navigate to Applications.
  2. At the top of the screen click on Create App Integration.
  3. In sign-in Method choose SAML 2.0.
  1. Click Next
  2. Name the application
  3. Choose App Logo (Optional).
  1. Click Next

Configure Your OKTA Application

  • Single Sign-on URL: This is ACS endpoint which can be obtained from truefoundry.
    <control-plane-url>/api/svc/v1/saml/acs
  • Default RelayState: This is endpoint where user will be redirected after being authenticated. This is generally control plane URL.
     <control-plane-url>/deployments?tab=services
Add Attributes Mapping

Integrate with TrueFoundry

To integrate Okta with TrueFoundry, Add the following configuration to env Variables In Okta Application navigate to Sign on tab and click on view SAML setup instructions
  • Identity Provider Single Sign-On URL: This value can be obtained from your Okta Application as demonstrated below. You will want to copy the Identity Provider Single Sign-On URL value from Okta into this field.
  • Certificate: From the overview of your SAML setup instruction in Okta, you should find a Certificate.