Simulating an IdP-initiated Flow with the Bookmark App
When an application only supports an SPAn acronym for service provider. Generally, an SP is a company, usually providing organizations with communications, storage, processing, and a host of other services. Within Okta, it is any website that accepts SAML responses as a way of signing in users, and has the ability to redirect a user to an IdP (e.g., Okta) to begin the authentication process.-initiated flow, you can simulate an IDP-initiated flowIdentity Provider Initiated (IdP-initiated) SSO - SAML authentication is initiated by the Identity Provider (IdP). In this flow, the Identity Provider initiates a SAML Response which is re-directed to the Service Provider to assert the user’s identity. In Okta, this is triggered after a user clicks the app for a SAML application. with the Bookmark appAn abbreviation of application. Essentially, it is a web-based site used to perform any number of specific tasks, and requires authentication from end users by signing in.. With the Bookmark application, the end user clicks a chiclet in Okta and is signed into the application. Internally, the chiclet calls Bookmark that goes to the URL for your domainA domain is an attribute of an Okta organization. Okta uses a fully-qualified domain name, meaning it always includes the top-level domain (.com, .eu, etc.), but does not include the protocol (https). in the app, and then calls Okta. You can customize the chiclet for Bookmark to display the logo for the application with the SP-initiated flow, so the end user experience is not different from logging on to any other application.
Note: ProvisioningProvisioning is the enterprise-wide configuration, deployment, and management of multiple types of IT system resources. Specifically, provisioning provides users access to equipment, software, or services. This involves creating, maintaining and deactivating required business process automation objects and attributes in systems, directories, and applications. features are not supported by Bookmark apps.
Using the Bookmark Application
- First, set up the application with an SP-initiated flow. This creates a chiclet. Be sure to hide this chiclet.
To hide the chiclet, select the General tab in the application. Then, click the Edit button. Check both options in the Application Visibility section, shown below.
- Then, add a Bookmark app. Enter the name of the app and the URL for your domain that was determined when you created the SP-initiated flow app, as shown below.
Important: Do not hide the Bookmark app. Leave both Application Visibility boxes unchecked, as shown below.
- Continue to the next screen and assign the app, as desired.
Changing the Chiclet Appearance
To make the chiclet for the Bookmark app look like the app that is called, you can add the logo and description of that app to the Bookmark app.
- After assigning the app, the screen shown below displays. Move the cursor to the position indicated by the red arrow. An edit button with a pencil icon appears. Click this icon to open the logo edit screen.
- The Edit Logo window opens. Change the logo as desired to make it clear to the end usersEnd users are people in your org without administrative control. They can authenticate into apps from the icons on their My Applications home page, but they are provisioned, deprovisioned, assigned, and managed by admins. which app is opened.