Learn how to set up an Enterprise Connection with Okta.
Dashboard
.API URL
.Settings > Enterprise connections
.Enterprise connections
find the Redirect URL
panel.https://<your_organization>-admin.okta.com
.Applications > Applications
in the left sidebar.Create App Integration
.SAML
as the sign-in method.Next
.Create SAML Integration
wizard, provide an App name
.Next
.Single sign-on URL
enter your ACS URL
(see Prerequisites - Service Provider ACS URL).Audience URI (SP Entity ID)
enter you project API URL
(see Prerequisites - Service Provider Entity ID).Attribute statements
panel. Under Name
enter http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress
.Name format
select URI Reference
Value
select user.email
.Next
.Finish
.Sign On
in the top tab navigation.Settings > Sign-on methods > SAML 2.0
panel find the Metadata URL
in the Metadata details
and copy it.
You need this for configuring the enterprise connection with Hanko.Applications > Applications
in the left sidebar.Assign Users to Apps
.Next
.Confirm assignments
.Settings > Enterprise connections
.Connections
, click New connection
.Name
for the connection.Domain
for the connection. When users authenticate via SAML SSO, the domain of the email
address provided as an identifier at the start of an authentication flow must match the domain configured here.Metadata URL
. This is the URL you copied in step 16 in Create an Okta application.Save
to create the connection.My settings
.My Apps
in the left sidebar.