Create SAML app integrations

SAML app integrations use federated authentication standards to give end users one-click access to your SAML application. The App Integration Wizard (AIW) generates the XML needed for the SAML request.

Before you begin

If your app integration contains links to instructions, prevent access issues by adding Okta to your list of sites that can always use cookies. See Allow third-party cookies.

The implementation of the integration determines the information that you need to provide to the AIW. For integrations created by third-parties, consult their documentation for the configuration information that you must specify. For integrations that your org developed, either consult its documentation or its developers for the configuration information that you must specify.

Create an integration

  1. In the Admin Console, go to ApplicationsApplications.
  2. Click Create App Integration.
  3. Select SAML 2.0 as the Sign-in method.
  4. Click Next.
  5. Provide the general information for the integration and then click Next.
  6. Provide the necessary SAML settings information for your integration. See Application Integration Wizard SAML field reference for descriptions of individual fields.
  7. Optional. Click <> Preview the SAML Assertion to view the XML generated from the SAML settings that you provided.
  8. Click Next.
  9. Provide configuration information about your app integration to Okta:
    • If you're adding an integration for internal use only, follow these steps:
      1. Select I'm an Okta customer adding an internal app.
      2. Select This is an internal app that we have created. However, if your app requires more SAML configuration instructions to work with Okta, select It's required to contact the vendor to enable SAML. Fill in the provided fields to help the Okta support team understand your SAML configuration.
      3. Click Finish. Your integration is created in your Okta org. You can modify your integration's parameters and assign it to users.
    • If you want to add your integration to the Okta Integration Network (OIN), follow these steps:
      1. If you want to integrate your app integration and be able to add it to the OIN, select I'm a software vendor. I'd like to integrate my app with Okta.
      2. Click Finish. Your integration is created in your Okta org. You can modify your integration's parameters and assign it to users.
      3. After you’re satisfied that all settings are correct and you've completed your preliminary testing, click Submit your app for review. This opens the OIN manager site and begins the OIN submission process.
  10. After you create your SAML app integration, the SAML Signing Certificates section appears on the Sign On tab. You must configure your app integration to verify signed SAML assertions for SSO and trust Okta as the Identity Provider. Complete Manage signing certificates.

When you add an app integration from the OIN, Okta generates an Update application event that appears in the System Log. This event reflects the creation of a new instance of an existing app.

When you create an app using the App Integration Wizard (AIW), Okta generates a Create application event that appears in the System Log. This event reflects the creation of a new app.

Next steps

If your integration doesn't behave as expected, contact Okta Support.