Obtain required SAML Data

SAML applications require several data items. Most often, the SAML application itself, or the application provider can provide the required information. The following information is required by this integration.

Field Description
Single sign on URL SAML Post URL location.
Often referred to as the SAML Assertion Consumer Service (ACS) URL for the target application.
Audience URI The application defined unique identifier that is the intended audience of the SAML assertion. Most often referred to as the SP Entity ID of your application.

Context specific URL

A URL provided by the SAML app itself, from SAML app generated meta data.
Used when a client connects to the SAML app using IDP initiated SSO.

The following are general steps to obtain and download application specific SAML metadata. Consult the documentation for the SAML aware application to determine how to locate and download the required metadata.

To obtain example metadata:

  1. Open a browser to the SAML application.
  2. Navigate to the portion of the application which supports downloading SAML metadata.
  3. Download application metadata.
    Metadata similar to that shown below will be downloaded.

    <md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" 
       xmlns:ds="httpSAMLShowcase" validUntil=". . . ">                   
            <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" 
                Location="https://SAMLtest.example.com/path" index="0" isDefault="true"/>
  4. Examine the XML and note that entityID and Location attributes.

Next steps

Add an Okta SAML application