Skip to main content

How to integrate Exivity with OKTA

In order to use Okta as an Identity Provider, we need to set up a new application. The following steps will guide you through the setup and configuration:

  1. Select the Applications section from the menu on the left and click Applications. A dashboard will open where you have the option to create new applications. To do so, click Create App Integration:

Creating an App in Okta

  1. Select the SAML2.0 type of integration and click Next.

Selecting SAML2.0 for your Exivity integration

  1. Choose a relevant name for your app. You also have the option to add your logo. Click Next to go to the SAML configuration screen.

Customizing the Okta app

  1. Next, you must fill in the General information for the SSO URL and the SP Entity ID.

Filling in SSO URL and Entity ID

In a separate browser tab, open Exivity, navigate to Administration > Settings > Single sing-on and copy the values from the Endpoints section to your Okta configuration with the following mapping:

Mapping between Okta and Exivity

tip

The Single Logout option is not mandatory to configure, therefore your SSO Okta integration with Exivity will work accordingly without it.

  1. Click Next, fill in the additional questions requested by Okta, and then finally, click Finish.
  1. Now that you created your application, navigate to the Sing on tab and click the View Setup Instructions button in the yellow box.

Setup instructions for SAML2 integrations with Exivity

  1. The values from the following screen have to be inserted into the Exivity Single sign-on settings screen with the following mapping:

SAML2 mapping between Okta and Exivity

  1. Click Update to save your configuration.
  1. In order to have a completely functional configuration, we must add the Okta domain name to the CORS origins whitelist known by Exivity. Navigate to the System tab in the Administration > Settings menu and add your domain in the CORS origins field.

Your domain may look similar to: https://name.okta.com

Adding Okta to the CORS whitelist

tip

Make sure to separate the CORS origins domains with a comma.

  1. Click Update to apply your new settings.

  2. Enable Single Sign-On in Exivity by navigating to Administration > Settings _ and then clicking on the System tab. Make sure the _Single Sign-On option is set to an option including SAML2 Authentication:

Enable Single Sign-On

  1. Click Update to apply your change.

  2. Log out of the current session and you will be redirected to the login page which may look like this:

SSO login

  1. And by clicking on the Login button, you'll be taken to the Okta login screen.