Description
If your organization uses Okta for Single Sign-On (SSO) and you want to integrate it with ConcealBrowse, follow the steps outlined in this guide.
Before you begin
Important!
- SSO can only be set up for one domain. Users must login using that domain (ex: if you set it up with @example.com, only @example.com domains will be allowed via SSO, no variations such as @examples.com would be allowed)
- You need to be logged into the Conceal dashboard using an account with the same domain you plan to set up with SSO (Ex: john@example.com would need to be logged in to upload the data to the Conceal dashboard. john@examples.com would not work if you are configuring the SSO for john@example.com)
- Conceal currently only supports Service Provider (SP) initiated login flows
Procedure
- In your browser, navigate to the the Conceal dashboard located at https://dashboard.conceal.io/, log in if necessary.
- Click on the section labeled Settings in the left hand menu.
- Click the dropdown arrow on the right next to SAML Single Sign On and choose the option labeled Okta.
- The Single Sign On URL & Audience URI (SP Entity ID) are provided. Copy these values by clicking the blue clipboard to the right.
If you need assistance with enabling SSO in Okta, following the instructions here: https://aws.amazon.com/premiumsupport/knowledge-center/cognito-okta-saml-identity-provider/ - Below that you will see a section labeled Attribute Mappings. These mappings must be configured in Okta for SSO to work correctly. Copy these values by clicking the blue clipboard to the right.
- Once you have created the application, assign users to the application.
- Download or copy the SAML IDP metadata from the button labeled View SAML Setup Instructions.
- Next add the SAML IDP metadata to the Conceal dashboard by pasting it into the designated area or uploading the file using the Upload SAML Data button.
- Once the SAML Metadata is uploaded, click the button labeled Configure SSO Provider.
*Never hesitate to contact your Customer Success Manager for any questions or concerns. You may also open a support ticket at support.conceal.io by scrolling to the bottom and clicking Submit a request.