SAML Single Sign-On (SSO) for Okta

SAML Single Sign-On (SSO) for Okta

SAML Single Sign-On (SSO) for Okta

Overview

Security Assertion Markup Language (SAML) stands as an open standard designed for the exchange of authorization data, facilitating seamless Single Sign-On (SSO) access across various applications through a unified authentication process. Gearbox provides SAML-based SSO integration with multiple service providers. This article will guide you through the configuration steps using Okta.

Upon activation, users can access their accounts through SSO seamlessly.
You must have an active Okta account and Gearbox administrative privileges to complete the below steps.

Supported Features

  1. SP-initiated SSO

Okta Setup

1. In Okta, Create a new app integration (1) within your account
SAML Single Sign-On (SSO) for Okta - Okta Setup Application

2. Choose SAML 2.0 (1) as the sign-in method for the integration
SAML Single Sign-On (SSO) for Okta - Create New App Integration


3. Add general settings for the Gearbox application, then proceed by clicking Next
SAML Single Sign-On (SSO) for Okta - SAML Integration


4. To configure the basic SAML settings in Okta, first, ensure that SAML SSO is enabled in Gearbox to retrieve the necessary URLs. Begin by clicking on the User icon (1), followed by selecting Settings (2). Within the Settings page, navigate to Integrations (3)
SAML Single Sign-On (SSO) for Okta - Settings


5. Locate the SAML Single Sign-On (1) panel and click on it to reveal the settings
SAML Single Sign-On (SSO) for Okta - Integrations


6. Enable SAML SSO (1) within Gearbox and remember to Save (2) your changes
SAML Single Sign-On (SSO) for Okta - Enable SAML SSO


7. Take note of the Metadata URL (1), Assertion Consumer Service (ACS) URL (2) and download the X.509 Certificate for Gearbox (3). These values will be required for configuring Okta's SAML settings
SAML Single Sign-On (SSO) - URL


8. Copy the ACS URL to Okta's SAML Settings Single sign on URL (1) and the metadata URL to setting Audience URI (SP Entity ID) (2). Set the remaining settings (3) and then click Show Advanced Settings (4)
SAML Single Sign-On (SSO) - SAML Settings


9. Configure the following advanced settings as shown below, uploading the previously downloaded X.509 Certificate (1)
SAML Single Sign-On (SSO) - Advanced Settings


10. Set up attribute statements for First Name and Last Name as per the provided instructions.
SAML Single Sign-On (SSO) - Attribute Statements


11. Click Next and then Finished to save the application settings in Okta.
12. In the new application under the tab Sign on, the SAML setup instructions (1) should appear. Click this button and copy values Identity Provider Single Sign-On URL (1) and X.509 Certificate (2) into Gearbox and click Save (3)
SAML Single Sign-On (SSO) - SAML Signing Certificates


SAML Single Sign-On (SSO) - Identity Provider























After completing these steps, visiting the Gearbox SSO URL should now connect users via Okta for authentication.

    • Related Articles

    • SAML Single Sign-On (SSO) for Active Directory Federation Service (ADFS)

      Overview Security Assertion Markup Language (SAML) stands as an open standard designed for the exchange of authorization data, facilitating seamless Single Sign-On (SSO) access across various applications through a unified authentication process. ...
    • SAML Single Sign-On (SSO) for Microsoft's Azure Active Directory (Azure AD)

      Overview Security Assertion Markup Language (SAML) stands as an open standard designed for the exchange of authorization data, facilitating seamless Single Sign-On (SSO) access across various applications through a unified authentication process. ...
    • Netcorp Integration

      Overview Gearbox seamlessly integrates with Netcorp via API every night to retrieve odometer and hourmeter readings. These readings play a crucial role in Gearbox for calculating Services Due and tracking running costs per hour/kilometre. Automatic ...
    • Create Prestart Records (Manually)

      Overview For customers that wish to upload paper-based Prestart checklists, these can be uploaded by creating Prestart records. Please see steps outlined below. The Documents module must be active on your subscription to upload documents. The delete ...
    • John Deere Integration

      Overview Gearbox seamlessly integrates with John Deere via API every night to retrieve odometer and hourmeter readings. These readings play a crucial role in Gearbox for calculating Services Due and tracking running costs per hour/kilometer. ...