Configure SSO with Okta SAML

Have more questions? Submit a request

For companies with a high volume of users or who have extensive security requirements, Single Sign-On (SSO) can make managing users easier and more streamlined. Okta SAML is one of several SSO providers that works with GoCanvas.

Adding Okta SAML

First, sign into your Okta SAML Admin Console.

  1. Toggle to Applications from the left panel.1.png
  2. Select Create App Integration.
    3.png

A new window will open.

  1. In the Platform drop down, select Web. For Sign on method, choose SAML 2.0.
    4.png
  2. Select Next to move to the next screen.
  3. Name your app, upload an app logo (optional), and set your app visibility.OKTA_Create SAML Integration_Step 1.png
  4. Select Next to confirm those settings.

You will be presented with a Create SAML Integration page.

  1. Fill in the Single sign on URL, Audience URI (SP Entity ID), and make sure that the Name ID format, Application username fields match the screenshot below.5.png
    • Single sign on URL: https://www.gocanvas.com/saml/acs
    • Check the box by Use this for Recipient URL and Destination URL
    • Audience URL (SP Entity ID): https://www.gocanvas.com
    • Name ID format: EmailAddress
    • Application username: Email
  2. Select Next and then Finish.

On the next screen, select the View Setup Instructions button.6.png

The next page will show you the information that you need to configure SSO within GoCanvas. You’ll see the Identity Provider Single Sign-On URL, Identity Provider Issuer, and the X.509 Certificate. You will need all of these, so make sure to keep this page open.

  1. Navigate to gocanvas.com and log in as an admin. 
  2. Expand the Account drop down and select Account Settings.
  3. Scroll to the bottom of the page and select the Settings button next to Single Sign On.
    Account_Settings_Advanced_Enable SSO.png
    • For the Issuer URI, enter the value in the Identity Provider Issuer field in Okta.
    • For the Sign In URL, enter the value in the Identity Provider Single Sign-On URL field in Okta.
    • If you need a Sign Out URL, enter the value in the Identity Provider Single Logout URL field in Okta.
    • Add the X509 Certificate from Okta to GoCanvas, using the Upload Certificate button.Account_Settings_Single Sign On_X509 Signing Certificate.png
  4. Select Save at the bottom of the page.

You should now be able to set up and manage your GoCanvas users through Okta SAML.

Did we answer your question?

Please let us know by voting below. All we ask is if you downvote, please let us know how the content can be improved in the comments!

Articles in this section

Was this article helpful?
1 out of 1 found this helpful
Share

Comments

0 comments

Please sign in to leave a comment.