Okta SSO Configuration Guide

Prerequisites

Ensure you have read the SSO Setup article to ensure you have configured the baseline and prepared for your IDP SSO connection.

Configuration Steps

Note: this guide uses the Classic UI, which can be selected on the top-left dropdown in Okta

1. Go to the Applications page

   

2. Click Add Application

   

3. Click Create New App. Under platform, select Web, and choose SAML 2.0. Click Create.

   

4. Name your application Transcend. You may download our App Icon here and click Upload Logo. Click Next.

   

5. Set your Single sign on URL to https://api.transcend.io/saml for the EU backend, or https://api.us.transcend.io/saml for the US backend Set Audience URI to transcend Set Name ID format to EmailAddress Set Application username to Email

   

6. Scroll down to Attribute Statements and set 3-5 attributes:

   • Set Name to firstName, Name format to Basic, Value to user.firstName

   • Set Name to lastName, Name format to Basic, Value to user.lastName

   • Set Name to login, Name format to Basic, Value to user.login

   • Set Title to title, Name format to Basic, Value to user.title

   • Set Department to department, Name format to Basic, Value to user.department

   • If you use Push Groups, you can also: Set groups, Name format to Basic, Filter to .* (or another filter to only expose certain groups)

   • Click Next.

     

7. Select "I'm an Okta customer adding an internal app" and click Finish.

   
   

8. You should be redirected to the Sign On tab. Click View Setup Instructions. Copy this information into Transcend on the Settings / SSO tab on the Admin Dashboard.

   This info is your:

   • Identity Provider Single Sign-On URL
   • Identity Provider Issuer
   • X.509 Certificate