Environment

• App Control: All Supported Versions
• Okta: All Supported Versions

Objective

Resolution

• While logged into Okta,

1. On the main page, click the "Admin" button on the top right.
2. Click "Add Applications" on the right side menu.
3. Click the "Create New App" button on the left.
4. Select "Web" and "SAML 2.0" and click "Create".
5. Enter App name and other options then click "Next".

• In the App Control Console

1. Go to Settings Menu > System Configuration > SAML Login.
2. In the Service Provider section, select "Manual" and paste these values into Okta in the correct location. 

• In Okta 

1. Select "EmailAddress" for Name ID Format. 
2. Then select "Email" for "Application Username"
3. Add an attribute called EmailAddress and set the value to user.email.
4. On the next screen, select "I'm an Okta customer adding an internal app" then "This is an internal app that we have created" then click "Finish".
5. On the next screen, right click "Identity Provider metadata" and select "Save link as" and save the XML.

• In the App Control console

1. Go to Configuration menu > System Configuration > SAML Login.
2. Click "Add Identity Provider".
3. Enter a provider name (This will appear on the login page).
4. Click "Choose File" and Save.

• In Okta

1. Select the user name, then "Profile". Make sure there is a user on the App Control server with that e-mail address.
2. Go to the Applications tab on the same page from the above step.
3. Click "Assign Applications".
4. Click "Assign" next to the app name created earlier.
5. Select "Save and Go Back" and "Done".

Related Content