Simulate an SP-initiated flow with the Bookmark App

A Service Provider-initiated (SP-initiated) flow occurs when an end user attempts to sign in to an external app directly on that app's sign-in website. For example, http://account.box.com/login is the sign-in location for the Box cloud app.

Some external apps only support an SP-initiated flow. However, you can use the Bookmark App integration to simulate an Identity Provider-initiated (IdP-initiated) flow to preserve the Okta user experience.

Configure the external app integration

1. Integrate the external app. The integration serves as the back-end connection between Okta and the SP.
   • See Add existing app integrations add an app from the Okta Integration Network (OIN).
   • See Create custom app integrations to add a custom app using the App Integration Wizard.
2. Hide the app icon from users.
   1. On the app page, go to the General tab.
   2. In the App Settings section, click Edit.
   3. In the Application visibility section, enable Do not display application icon to users.
3. Click Save.

Configure the Bookmark App integration

Add an Okta Bookmark App integration to display the external app to the end user.

1. In the Admin Console, go to ApplicationsApplications.

2. Click Browse App Catalog.
3. Search for and select the Bookmark App integration.
4. Click Add Integration.
5. In General settings, enter the name of the app that you configured earlier.
6. Enter the URL for your domain. For example, https://atko.account.box.com/login, where atko is the domain of your account.
7. Clear the Do not display application icon to users checkbox.
8. Click Done.
9. Assign the app integration to users. See Assign app integrations.

Change the app icon

Your end users now see an app icon on their desktop that simulates the Okta IdP-initiated flow into the external app.

Related topics

Assign app integrations

Customize an application logo