Add an Okta SAML application

This topic describes how to create an Okta Security Assertion Markup Language (SAML) application.

Before you begin

Determine the values for the following items:

  • Single sign-on URL: SAML Post URL location. This is often referred to as the SAML Assertion Consumer Service (ACS) URL for the target application.
  • Audience URI: The application-defined unique identifier that is the intended audience of the SAML assertion. This is often referred to as the SP Entity ID of your application.

Create a direct-access application in your Okta org

  1. See one of the following topics for instructions:
  2. In the Configure SAML step, in the SAML Settings section, enter values for these fields:
    1. Single sign on URL
    2. Audience URI
  3. On the page where you provide configuration information about your app integration to Okta, select I'm an Okta customer adding an internal app.
  4. Complete the rest of the instructions.

Determine the SAML application URL

Okta bookmark applications require a specific URL for the SAML application.

  1. Click the name of the newly added application.
  2. Click the Sign On tab.
  3. In the SAML 2.0 section of the Settings page, click Identity Provider metadata.
  4. Select and copy the metadata. This metadata is provided to the SAML application to generate the URL.

    The following steps vary based on the SAML application. See the application provider's documentation for obtaining the appropriate URL.

  5. Go to the SAML application. In this example, go to https://SAMLtest.examplecomIDP initiated SSO
  6. Paste the metadata into the metadata content field and click SUBMIT XML.