Simulating an IdP-initiated Flow with the Bookmark App

When an application only supports an SPAn acronym for service provider. Generally, an SP is a company, usually providing organizations with communications, storage, processing, and a host of other services. Within Okta, it is any website that accepts SAML responses as a way of signing in users, and has the ability to redirect a user to an IdP (e.g., Okta) to begin the authentication process.-initiated flow, you can simulate an IDP-initiated flowIdentity Provider Initiated (IDP-initiated) SSO - SAML authentication is initiated by the Identity Provider (IdP). In this flow, the Identity Provider initiates a SAML Response which is re-directed to the Service Provider to assert the user’s identity. In Okta, this is triggered after a user clicks the chiclet for a SAML application. with the Bookmark appAn abbreviation of application. Essentially, it is a web-based site used to perform any number of specific tasks, and requires authentication from end users by signing in.. With the Bookmark application, the end user clicks a chiclet in Okta and is signed into the application. Internally, the chiclet calls Bookmark that goes to the URL for your domainA domain is an attribute of an Okta organization. Okta uses a fully-qualified domain name, meaning it always includes the top-level domain (.com, .eu, etc.), but does not include the protocol (https). in the app, and then calls Okta. You can customize the chiclet for Bookmark to display the logo for the application with the SP-initiated flow, so the end user experience is not different from logging on to any other application.

Using the Bookmark Application

  1. First, set up the application with an SP-initiated flow. This creates a chiclet. Be sure to hide this chiclet.

    To hide the chiclet, select the General tab in the application. Then, click the Edit button. Check both options in the Application Visibility section, shown below.

    Hide_Chicklet.png
  2. Then, add a Bookmark app. Enter the name of the app and the URL for your domain that was determined when you created the SP-initiated flow app, as shown below.

    Important: Do not hide the Bookmark app. Leave both Application Visibility boxes unchecked, as shown below.

    Bookmark_App_1.jpg

  3. Continue to the next screen and assign the app, as desired.

Changing the Chiclet Appearance

To make the chiclet for the Bookmark app look like the app that is called, you can add the logo and description of that app to the Bookmark app.

  1. After assigning the app, the screen shown below displays. Move the cursor to the position indicated by the red arrow. An edit button with a pencil icon appears. Click this icon to open the logo edit screen.

    Bookmark_App_2.jpg

    Bookmark_App_3.jpg

  2. The Edit Logo window opens. Change the logo as desired to make it clear to the end usersIn Okta literature, we generally refer to "end users" as the people who have their own Okta home page (My Applications), using chiclets to authenticate into all of their apps. End users do not have any administrative control. When we refer to "users" we are generally referring to the individual(s) who have administrative control. which app is opened.

Bookmark_App_4.jpg

Top