Setup SSO on XTEN-AV Using Okta

SSO Settings : Click on 'Profile' to open the dropdown. Then, click on 'Settings' to navigate to the settings page. There, you'll find the option 'SSO Settings,' where you can fill in all the necessary details






SSO Details : Three Details you have to fill SAML 2.0 Endpoints(Https), Identity Provider Issuer and X.509 Certificate.

SAML 2.0 Endpoints(Https):- The secure URLs used by the SAML identity provider (IdP) to communicate with the service provider (SP). These URLs are essential for managing the SAML authentication process, ensuring that user login and logout actions are handled securely between the IdP and SP.

Identity Provider Issuer :- The Identity Provider Issuer is a unique identifier for the identity provider (IdP) in a SAML 2.0 setup. It is typically a URL or a URN that specifies the IdPs identity and helps the service provider (SP) verify and trust the authentication requests and assertions coming from the IdP

X.509 Certificate :- The X.509 Certificate in a SAML 2.0 context is used to secure communication between the identity provider (IdP) and the service provider (SP). This certificate serves several purposes like Signature Verification,Encryption and Trust Establishment.




Enable SSO : You will fill all details then on clicking submit button then sso will be enabled.




Login using SSO : Enter the email address where SSO is enabled and click 'Sign In.' You will be redirected to the IdP platform. Fill in your credentials and log in. Afterward, you will be logged into the Xten AV platform.








Application Configuration on OKTA

Okta Account Create : Click the link below to create an Okta account and provide all required details. If you already have an account, please skip this step.

“https://www.okta.com/free-trial/”



Application Creation : Click on the "Applications" dropdown and select "Applications." Then, click on "Create App Integration." When the modal appears, choose "SAML 2.0" and click Next."





Application SAML Setup : After that we have to set up Create SAML Integration. In the first step we will fill the App name then click on next .



In the second step of the SAML Settings, fill in the following details:
Single Sign-On URL: Enter the ACS URL provided in the XTEN-AV SSO Configuration.
Audience URI (SP Entity ID): Use the URI provided in the XTEN-AV SSO Configuration settings.
Name ID Format: Select "Email Address."
Application Username: Choose "Email."
Update Application Username On: Set to "Create and Update."

Scroll down and fill the attributes.






After that click on Next to finish the second step configuration.




In the third step fill feedback or you can skip this feedback form and click one finish. SAML is configured now.






SAML Details on XTEN-AV application : In the Application, go to the "Sign On" tab and click on it. Scroll down and fill the details:

Sign-On URL: Copy this URL and enter it as the "SAML 2.0 Endpoint (HTTPS)" in the XTEN-AV SSO configuration.
2.** Issuer: Use this value as the "Identity Provider Issuer" in XTEN-AV.
Signing Certificate: Copy the X.509 Certificate and paste it into the XTEN-AV configuration.






This is detailed on XTEN-AV which will be filled .




People Assign on Okta : In the Application, go to the "Assignment " tab and click on it. Then click on “Assign” then click on “Assign to people” then your name and email will show click on assign then click on Done then Username will show click on Save and Go Back.









SSO Configuration is completed on Okta .


Users assignment in Application on OKTA

User creation in Application : Click on the "Directory" dropdown and select "People." This will open the user account list. Next, click on “Add Person,” and a user form will appear. Fill out the form, then save it.












Created user list will show.


Assign Users in Application : Click on the 'Application' dropdown and select 'Applications'. Then, go to the 'Assignments' tab. After that, click 'Assign' and then 'Assign to People'. The user account will be displayed.




Steps to Assign People in Application : The name and email will be displayed. On the left side, click 'Assign'. A pop-up will appear showing the username. Click 'Save and go back'. Once the user is shown as assigned, click 'Done' to complete the process.










User was assigned in the application.

Updated on: 09/13/2024

Was this article helpful?

Share your feedback

Cancel

Thank you!