Simulate an IdP-initiated flow using the Bookmark App
A service provider-initiated (SP-initiated) flow occurs when an end user attempts to sign in to an external application directly on that application's sign-in website. For example,
http://account.box.com/login is the sign-in location for the Box cloud application.
Some external applications only support an SP-initiated flow, but you can use Okta's Bookmark App integration to simulate an Identity Provider-initiated (IdP-initiated) flow to preserve the Okta user experience.
You can customize the Bookmark App integration to display the logo of the external application.
The Bookmark App integration does not support provisioning features.
Task 1 - Configure the external application integration
- Add an Okta app integration for the external application with an SP-initiated flow. Select from one of the thousands of OIN applications or create a custom app integration using the App Integration Wizard. See Add existing app integrations or Create custom app integrations. This app integration serves as the back-end connection between Okta and the SP; however, it creates an application icon that you must hide from the end user.
- To hide the application icon, enable both options in the Application visibility section when you add or create the app integration:
Task 2 - Configure the Bookmark App integration
Add an Okta Bookmark App integration to display the external application to the end user.
- In the Admin Console, go to Applications > Applications.
- Click Browse App Catalog.
- In the Search... field, enter Bookmark App. Click on the app integration called Bookmark App.
- Click Add to create a new Bookmark App instance.
- In the General Settings for the Bookmark App, enter the name of the external application and the URL for your domain at the external site. For example,
atkois the domain of your account.
- This is the application icon that end users see, so leave both Application Visibility boxes unchecked:
- Click Done to create the Bookmark App.
- Assign the app integration to the necessary users. See Assign app integrations.
Task 3 - Change the application icon appearance
You can add a custom logo to use as the application icon for your app integration.
A custom logo must meet the following requirements:
- Image type must be PNG, JPG, or GIF (PNG is recommended)
- Image dimensions should be at least 420 pixels by 120 pixels to prevent visual scaling issues
- Image size must be less than 1 MB in size
- Click the menu icon on the logo tile, and then select Upload new logo.
- In the Upload New Logo dialog, click Browse files.... Locate and select the image to use as the application icon and click Open.
- Click Apply to set the application icon.
Your end users now have an application icon on their desktop that simulates the Okta IdP-initiated flow into the external application.