...
- Go to "Enterprise Applications" and locate the correct app, it should have the same name as the App registration which was created on the above steps.
- Navigate to "Properties" and set "Assignment required?" to "Yes".
- Navigate to "Users and groups" and define the list of users and/or groups allowed to sign in using SSO.
Okta - SSO with SAML 2.0
To set up Okta SSO authentication, access the Okta admin console and follow below steps to set up a new app integration:
- In Okta admin console navigate to "Applications" > "Applications" and then select "Create App Integration".
- "Create a new app integration" dialog opens, select "SAML 2.0" as the sign-in method.
- Click "Next".
- Fill in "General Settings" (app name and logo are shown to end users when they authenticate).
- Click "Next".
- Fill "SAML Settings" as stated below:
- General:
- Make sure "Use this for Recipient URL and Destination URL" is selected and fill in "Single sign-on URL" using "Single Sign-On URL" available on Blancco Management Portal SSO settings page.
- Enter "Audience URI (SP Entity ID )" using "Entity ID" available on Blancco Management Portal SSO settings page.
- Attribute Statements:
- Add a new attribute statements using below details.
Name Name format Value http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress Unspecified user.email http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name Unspecified user.firstName + " " + user.lastName
- Add a new attribute statements using below details.
- General:
- Click "Next".
- Fill in the "Feedback" section and click "Finish".
- "Sign On" -tab for the application should open, copy the Metadata URL from the page and paste it to Blancco Management Portal SSO settings to the "SAML metadata URL" field.
- Click "Save".
Lowercase transformation for user email address
...