Step 1 – Login to OKTA
Navigate to the OKTA website and login with your company credentials.
Step 2 – Go to ‘Applications’ → ‘ Applications’
In the sidebar menu, choose the menu item Applications. This will expand to show another Applications option. Click on this.
Step 3 – Select ‘Create App Integration’
To create a new application click on the Create App Integration button.
Step 4 – Choose ‘SAML 2.0’
- Sign-in method: SAML 2.0
- Application Type: Web Application
- Click on Next
Step 5 – Complete the ‘General Settings’ section
- App Name: Ronspot
- Logo:
- Click on Next
Step 6 – Complete the ‘Configure SAML’ section
- Single sign on URL: https://admin.ronspot.ie/member/OktaLogin?acs
- Audience URI (SP Entity ID): https://admin.ronspot.ie/member/OktaLogin?acs
- Destination URL: https://admin.ronspot.ie/member/OktaLogin?acs
- Audience Restriction: https://admin.ronspot.ie/member/OktaLogin
- Click on Next
Step 7 – Complete the ‘Feedback’ section
- Are you a customer or partner? : I’m an Okta customer adding an internal app
- App type: This is an internal app that we have created
- Click on Finish
Step 8 – Go to ‘Applications’ and select ‘Ronspot’
Return to the Applications page and select the Ronspot app that you have just created.
Step 9 – Review your SAML values
In the SAML Settings tab, click on Edit to view the SAML values. Ensure you are using the values below:
- Single sign on URL: https://admin.ronspot.ie/member/OktaLogin?acs
- Audience URI (SP Entity ID): https://admin.ronspot.ie/member/OktaLogin?acs
- Destination URL: https://admin.ronspot.ie/member/OktaLogin?acs
- Audience Restriction: https://admin.ronspot.ie/member/OktaLogin
- Click on Save
Step 10 – Go to ‘Assignments’ and select employees
In the Assignments tab, you can select the employees you want to give access to. You can grant access to all members of your organisation or restrict it to some.
Step 11 – Go to ‘Sign On’ section and click on ‘View setup instructions’
Scroll down to the Sign On tab, you will be able to see the View setup instructions as below, please click on it.
Step 12 – Copy the values and send them to Ronspot
It will open the page below. Please copy the field values and send them to the Ronspot Support team (see screenshot below).
- Identity Provider Single Sign-On URL
- Identity Provider Issuer
- X.509 Certificate
Step 13 – Go to the ‘Security’ → ‘API’ → ‘Authorization Servers‘
In the sidebar menu, choose the menu item Security.
This will expand. Click on the API option. There are 3 tabs. Please select the Authorization Servers tab.
Step 14 – Add authorization server
Then click on the Add Authorization Server button. Fill out the 3 fields in this form and click on the Save button. Give it any appropriate name. See the image below.
15 – Create a token
Go to the Tokens tab and then click on the Create Token button. In the subsequent pop-up, give it any appropriate name and then save it.
Don’t forget
As noted in step 12, please pass the following values to the Ronspot team:
- Identity Provider Single Sign-On URL
- Identity Provider Issuer
- X.509 Certificate